3b29b06b779c89b58a0231397ef7bc844fdf6623f1b6b11e1f02c00475f63d66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-17_6f95f1ebeeac2151d63eb78aa8e03f7f_cryptolocker
Size

84KB
Sample

241017-pnpz8axcqa
MD5

6f95f1ebeeac2151d63eb78aa8e03f7f
SHA1

39ae0e5aae473e9050ad31dbcbafb4f6ff0066e4
SHA256

3b29b06b779c89b58a0231397ef7bc844fdf6623f1b6b11e1f02c00475f63d66
SHA512

0a87b1aef29e34f5ea375def9df79473a49e3fc681ad4a73ee2a445c5c207b52719bdeedf82ccca9db246a8b39f829fc76bc8a749c21e9ccf399b6cc1df996cc
SSDEEP

768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvzkxK:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8zZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-17_6f95f1ebeeac2151d63eb78aa8e03f7f_cryptolocker
- Size
  
  84KB
- MD5
  
  6f95f1ebeeac2151d63eb78aa8e03f7f
- SHA1
  
  39ae0e5aae473e9050ad31dbcbafb4f6ff0066e4
- SHA256
  
  3b29b06b779c89b58a0231397ef7bc844fdf6623f1b6b11e1f02c00475f63d66
- SHA512
  
  0a87b1aef29e34f5ea375def9df79473a49e3fc681ad4a73ee2a445c5c207b52719bdeedf82ccca9db246a8b39f829fc76bc8a749c21e9ccf399b6cc1df996cc
- SSDEEP
  
  768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvzkxK:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8zZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2