f6dc0ace42df931cb357623e79ad2353369fa4fd6c6de2d7ea5b4098c950543a | Triage

Sharing

General

Target

2024-10-10_cf3ba133a8b6bcb83ae2d8118c25cfa9_cryptolocker
Size

34KB
Sample

241010-hdjl5awajq
MD5

cf3ba133a8b6bcb83ae2d8118c25cfa9
SHA1

c47325d5e447aaa6e3121d544b8fdb76af1c7fa8
SHA256

f6dc0ace42df931cb357623e79ad2353369fa4fd6c6de2d7ea5b4098c950543a
SHA512

e4ade634f2ab8d9f8b9a5754f1e1b00a47cad75ade021a97c5e1a6e63978a006fcc3e6a209534893bef7233d8fbbf9aba46e4e638de3fe32d3fced56ac4318cc
SSDEEP

384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoi0WlLYZAM9BWpS65:b7o/2n1TCraU6GD1a4X0WlK5gS4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_cf3ba133a8b6bcb83ae2d8118c25cfa9_cryptolocker
- Size
  
  34KB
- MD5
  
  cf3ba133a8b6bcb83ae2d8118c25cfa9
- SHA1
  
  c47325d5e447aaa6e3121d544b8fdb76af1c7fa8
- SHA256
  
  f6dc0ace42df931cb357623e79ad2353369fa4fd6c6de2d7ea5b4098c950543a
- SHA512
  
  e4ade634f2ab8d9f8b9a5754f1e1b00a47cad75ade021a97c5e1a6e63978a006fcc3e6a209534893bef7233d8fbbf9aba46e4e638de3fe32d3fced56ac4318cc
- SSDEEP
  
  384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoi0WlLYZAM9BWpS65:b7o/2n1TCraU6GD1a4X0WlK5gS4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2