f7e40800de63813c1fa2a31c30bdabcbf8d0b98ee5038d8bd526bf80057be1d6 | Triage

Sharing

General

Target

2024-10-18_9b2ecc70b2567a0f33e5743333665684_cryptolocker
Size

28KB
Sample

241018-a295zsyfkn
MD5

9b2ecc70b2567a0f33e5743333665684
SHA1

e3c62f4d42b402e579bc0940c2476c5f1f8bba4d
SHA256

f7e40800de63813c1fa2a31c30bdabcbf8d0b98ee5038d8bd526bf80057be1d6
SHA512

b8cb5e2ccb9344407f80c57e7c1cae8a7b5bdf21bdfadccb2051feae6fdc5990ed3745cec4c5c146994a13a11f43683828cfb88aa6d96d95f77166b4e7555cf1
SSDEEP

384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoIW:b7o/2n1TCraU6GD1a4X3W

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_9b2ecc70b2567a0f33e5743333665684_cryptolocker
- Size
  
  28KB
- MD5
  
  9b2ecc70b2567a0f33e5743333665684
- SHA1
  
  e3c62f4d42b402e579bc0940c2476c5f1f8bba4d
- SHA256
  
  f7e40800de63813c1fa2a31c30bdabcbf8d0b98ee5038d8bd526bf80057be1d6
- SHA512
  
  b8cb5e2ccb9344407f80c57e7c1cae8a7b5bdf21bdfadccb2051feae6fdc5990ed3745cec4c5c146994a13a11f43683828cfb88aa6d96d95f77166b4e7555cf1
- SSDEEP
  
  384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoIW:b7o/2n1TCraU6GD1a4X3W
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2