936fadbd9d4f0d93dfb2ac6aa33aacf894c39ed22abc661c853afcc94a750b00 | Triage

Sharing

General

Target

2024-10-15_19830e745db8d3cacd74e0d554b82aa9_cryptolocker
Size

76KB
Sample

241015-dycbbswemq
MD5

19830e745db8d3cacd74e0d554b82aa9
SHA1

ae3cfe6cd14d14bd16672af746d9a7434c323714
SHA256

936fadbd9d4f0d93dfb2ac6aa33aacf894c39ed22abc661c853afcc94a750b00
SHA512

20be417636f0acb3d866419f98d328fb9b25c62edc75435b016743c1b326d47f3652ccf5e1d273d668218851b9f275560b48aae54762d624560e1bff7ae51648
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfdVTF:vCjsIOtEvwDpj5H9YvQd2p

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-15_19830e745db8d3cacd74e0d554b82aa9_cryptolocker
- Size
  
  76KB
- MD5
  
  19830e745db8d3cacd74e0d554b82aa9
- SHA1
  
  ae3cfe6cd14d14bd16672af746d9a7434c323714
- SHA256
  
  936fadbd9d4f0d93dfb2ac6aa33aacf894c39ed22abc661c853afcc94a750b00
- SHA512
  
  20be417636f0acb3d866419f98d328fb9b25c62edc75435b016743c1b326d47f3652ccf5e1d273d668218851b9f275560b48aae54762d624560e1bff7ae51648
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfdVTF:vCjsIOtEvwDpj5H9YvQd2p
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2