6ae116eef03f34db89ac44950eae60c03bcf116a537ead03d00259e2f291b5e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-13_ddc95c47bacdbfb76b782aee664d6e26_cryptolocker
Size

43KB
Sample

241013-ej95gsybjd
MD5

ddc95c47bacdbfb76b782aee664d6e26
SHA1

b71309f60f21bd55506476072317a5968b232936
SHA256

6ae116eef03f34db89ac44950eae60c03bcf116a537ead03d00259e2f291b5e9
SHA512

8ffdf1eda934fc0d86dcc6fb634f9861229964789bcc92a7615add044b13389a33e958855fa8376fc51252b22a844bf44f71046c8a490d4e2cbd3ce8c4834a9b
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95a:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_ddc95c47bacdbfb76b782aee664d6e26_cryptolocker
- Size
  
  43KB
- MD5
  
  ddc95c47bacdbfb76b782aee664d6e26
- SHA1
  
  b71309f60f21bd55506476072317a5968b232936
- SHA256
  
  6ae116eef03f34db89ac44950eae60c03bcf116a537ead03d00259e2f291b5e9
- SHA512
  
  8ffdf1eda934fc0d86dcc6fb634f9861229964789bcc92a7615add044b13389a33e958855fa8376fc51252b22a844bf44f71046c8a490d4e2cbd3ce8c4834a9b
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95a:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2