066c8bdd29e8850d07f023b188df731086c874368a0dc757786fa40f1f92a174 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-15_73dcc536c67f19a6288dd2f1091f78f0_cryptolocker
Size

78KB
Sample

241015-c8nxfazgrh
MD5

73dcc536c67f19a6288dd2f1091f78f0
SHA1

1d2846331398e8028c963d74562c969182f5854a
SHA256

066c8bdd29e8850d07f023b188df731086c874368a0dc757786fa40f1f92a174
SHA512

3f6f4ef7b910a506944217836db76a123086f6ea60a6a7c89f48a1f2281310d006a87968bdacae22037d55e022b5426d2416395e24a095bbb2acc3f9b2d18c3a
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KU8:ZVxkGOtEvwDpjcao

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-15_73dcc536c67f19a6288dd2f1091f78f0_cryptolocker
- Size
  
  78KB
- MD5
  
  73dcc536c67f19a6288dd2f1091f78f0
- SHA1
  
  1d2846331398e8028c963d74562c969182f5854a
- SHA256
  
  066c8bdd29e8850d07f023b188df731086c874368a0dc757786fa40f1f92a174
- SHA512
  
  3f6f4ef7b910a506944217836db76a123086f6ea60a6a7c89f48a1f2281310d006a87968bdacae22037d55e022b5426d2416395e24a095bbb2acc3f9b2d18c3a
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KU8:ZVxkGOtEvwDpjcao
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2