d617cf62ac0458b65024ca16a907843099eaac8d858717e36fffcf2fe1d2a71d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-15_8ad52f4c57d3b39bb031b713d4d01603_cryptolocker
Size

29KB
Sample

241015-da9lxsvcpq
MD5

8ad52f4c57d3b39bb031b713d4d01603
SHA1

7646c6c1be0d4d02b7d2fdb7c59fdb0ca1d5784f
SHA256

d617cf62ac0458b65024ca16a907843099eaac8d858717e36fffcf2fe1d2a71d
SHA512

4d4307cd712a8b4cfa895171aa6aabee58f4ddcdc610e220f3e82fe2a04f7eb174bcbfffd1a3ec8846ed4425df7beb9dcf5dd0f0352c76ed04e39b57b0dfebc1
SSDEEP

768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQw:jKUog898rYMOtEvwDpj1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-15_8ad52f4c57d3b39bb031b713d4d01603_cryptolocker
- Size
  
  29KB
- MD5
  
  8ad52f4c57d3b39bb031b713d4d01603
- SHA1
  
  7646c6c1be0d4d02b7d2fdb7c59fdb0ca1d5784f
- SHA256
  
  d617cf62ac0458b65024ca16a907843099eaac8d858717e36fffcf2fe1d2a71d
- SHA512
  
  4d4307cd712a8b4cfa895171aa6aabee58f4ddcdc610e220f3e82fe2a04f7eb174bcbfffd1a3ec8846ed4425df7beb9dcf5dd0f0352c76ed04e39b57b0dfebc1
- SSDEEP
  
  768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQw:jKUog898rYMOtEvwDpj1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2