f11b405203b3585bd9e9f155a5528e8fbd2f2666a09a1f6ed4717618d43fc31e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-15_9d8dbe6ecc7591bce54bc3b76a32cf07_cryptolocker
Size

43KB
Sample

241015-fchmbsvhnc
MD5

9d8dbe6ecc7591bce54bc3b76a32cf07
SHA1

3216110735c42586bacc6e4354389b8d6cae3466
SHA256

f11b405203b3585bd9e9f155a5528e8fbd2f2666a09a1f6ed4717618d43fc31e
SHA512

cc0fa6cad496cc9865903ace7e565db472bfb95e6500e45b8785fe2a144868fa28b5e4e360f5edbdbd03c8c0119eb356192c97bad1b90f2c263752ed0e12d518
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAGjr/:bCDOw9aMDooc+vAGjj

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-15_9d8dbe6ecc7591bce54bc3b76a32cf07_cryptolocker
- Size
  
  43KB
- MD5
  
  9d8dbe6ecc7591bce54bc3b76a32cf07
- SHA1
  
  3216110735c42586bacc6e4354389b8d6cae3466
- SHA256
  
  f11b405203b3585bd9e9f155a5528e8fbd2f2666a09a1f6ed4717618d43fc31e
- SHA512
  
  cc0fa6cad496cc9865903ace7e565db472bfb95e6500e45b8785fe2a144868fa28b5e4e360f5edbdbd03c8c0119eb356192c97bad1b90f2c263752ed0e12d518
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAGjr/:bCDOw9aMDooc+vAGjj
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2