f37965726ab4cfcd2313d94481ed6f8d6f3ca0acf96c052c2886306f6564059e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-12_f42d8cf5aea349100df4148e320e9d96_cryptolocker
Size

70KB
Sample

241012-j2gcca1enh
MD5

f42d8cf5aea349100df4148e320e9d96
SHA1

b9811a9451e0a7a3516eb03ca23e4ef38ca508e2
SHA256

f37965726ab4cfcd2313d94481ed6f8d6f3ca0acf96c052c2886306f6564059e
SHA512

a012a1c2fa14f8e4e2ab43e1ad8cedd63421c962585db9b97be982bb3a58774fccca609c61749b7848933b4a170e365e2997e29e77e9a0da71eb6b40d188835c
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEc:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7E

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_f42d8cf5aea349100df4148e320e9d96_cryptolocker
- Size
  
  70KB
- MD5
  
  f42d8cf5aea349100df4148e320e9d96
- SHA1
  
  b9811a9451e0a7a3516eb03ca23e4ef38ca508e2
- SHA256
  
  f37965726ab4cfcd2313d94481ed6f8d6f3ca0acf96c052c2886306f6564059e
- SHA512
  
  a012a1c2fa14f8e4e2ab43e1ad8cedd63421c962585db9b97be982bb3a58774fccca609c61749b7848933b4a170e365e2997e29e77e9a0da71eb6b40d188835c
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEc:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7E
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2