20bc9eec65c10801a24607d28379d002b504e559dc2751025f44d5fa605b2e88 | Triage

Sharing

General

Target

2024-10-15_894cc4a9f5bc73b7d879059d60882a6d_cryptolocker
Size

66KB
Sample

241015-d8qxgasgme
MD5

894cc4a9f5bc73b7d879059d60882a6d
SHA1

78687e220e9ba5ab761c0db3fd6913f0a9e8e403
SHA256

20bc9eec65c10801a24607d28379d002b504e559dc2751025f44d5fa605b2e88
SHA512

3dc962201a9a181a4c723b0ef799e9ccbe6e7e98cbe7e3b885e0ac17ad490cf3cbf61d18fe73a324c7b528b06184e4bcbab5884fea9985d016a234d47b6cb502
SSDEEP

1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsihr+:BbdDmjr+OtEvwDpjM8J

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-15_894cc4a9f5bc73b7d879059d60882a6d_cryptolocker
- Size
  
  66KB
- MD5
  
  894cc4a9f5bc73b7d879059d60882a6d
- SHA1
  
  78687e220e9ba5ab761c0db3fd6913f0a9e8e403
- SHA256
  
  20bc9eec65c10801a24607d28379d002b504e559dc2751025f44d5fa605b2e88
- SHA512
  
  3dc962201a9a181a4c723b0ef799e9ccbe6e7e98cbe7e3b885e0ac17ad490cf3cbf61d18fe73a324c7b528b06184e4bcbab5884fea9985d016a234d47b6cb502
- SSDEEP
  
  1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsihr+:BbdDmjr+OtEvwDpjM8J
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2