cd99dcad8c4f2e8c0487b81ca3824ed996b058f083c099b128ac8576930e4d59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-10_fd3c716b97ff4c2254fb3d825a748851_cryptolocker
Size

32KB
Sample

241010-gwfgrazand
MD5

fd3c716b97ff4c2254fb3d825a748851
SHA1

478c3b36e1b647c25db540ad112a5f9e21c9a886
SHA256

cd99dcad8c4f2e8c0487b81ca3824ed996b058f083c099b128ac8576930e4d59
SHA512

813352b433edb595fa0e7d0d983eaadd1c72c6a48e5cdd049786ce8e3a44b477150a41ce4ac249e0200fecbac695fb9c4ddef97ef2dd51738208165a51f1c0e0
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCe:vj+jsMQMOtEvwDpj5Hv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_fd3c716b97ff4c2254fb3d825a748851_cryptolocker
- Size
  
  32KB
- MD5
  
  fd3c716b97ff4c2254fb3d825a748851
- SHA1
  
  478c3b36e1b647c25db540ad112a5f9e21c9a886
- SHA256
  
  cd99dcad8c4f2e8c0487b81ca3824ed996b058f083c099b128ac8576930e4d59
- SHA512
  
  813352b433edb595fa0e7d0d983eaadd1c72c6a48e5cdd049786ce8e3a44b477150a41ce4ac249e0200fecbac695fb9c4ddef97ef2dd51738208165a51f1c0e0
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCe:vj+jsMQMOtEvwDpj5Hv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2