789ea0e6cb106ae065518e0d37b869b454c072a11b57d34297b0dd452fd1b34a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-14_fff0fcd58125e18e34b0893187dc1788_cryptolocker
Size

28KB
Sample

241014-jdtmrssarf
MD5

fff0fcd58125e18e34b0893187dc1788
SHA1

7285a0071f3b5347748dc68ac697c699b7764db2
SHA256

789ea0e6cb106ae065518e0d37b869b454c072a11b57d34297b0dd452fd1b34a
SHA512

2a478bcc4cfcc97169ff3a0da9825db18697c0cf88038b4ca2295629d90f4860d5ba649f4c574ce46d006d6ac533a0e185b0242ddd0f6ef6a2d0d3ac17f5b28f
SSDEEP

768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQR:jKUog898rYMOtEvwDpj8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-14_fff0fcd58125e18e34b0893187dc1788_cryptolocker
- Size
  
  28KB
- MD5
  
  fff0fcd58125e18e34b0893187dc1788
- SHA1
  
  7285a0071f3b5347748dc68ac697c699b7764db2
- SHA256
  
  789ea0e6cb106ae065518e0d37b869b454c072a11b57d34297b0dd452fd1b34a
- SHA512
  
  2a478bcc4cfcc97169ff3a0da9825db18697c0cf88038b4ca2295629d90f4860d5ba649f4c574ce46d006d6ac533a0e185b0242ddd0f6ef6a2d0d3ac17f5b28f
- SSDEEP
  
  768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQR:jKUog898rYMOtEvwDpj8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2