a0ec0613ab2c742f73d52401570b7fef5ef1267c084ba18a222034661a8d966e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_57abf763a2584d73cf2df3f67b3587c5_cryptolocker
Size

35KB
Sample

241018-awzr3aycnk
MD5

57abf763a2584d73cf2df3f67b3587c5
SHA1

243450dfc8df2566368ba1323970793f977a3526
SHA256

a0ec0613ab2c742f73d52401570b7fef5ef1267c084ba18a222034661a8d966e
SHA512

42f06f3944fa9128a027364c0860370a925caa70d26a1cb482b9bbf74643a7d1a752ebd829454b2a173f2f957eba747e77592fef31c6c85683ffe02a099af2c3
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkZ:btB9g/WItCSsAGjX7e9N0hunrkZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_57abf763a2584d73cf2df3f67b3587c5_cryptolocker
- Size
  
  35KB
- MD5
  
  57abf763a2584d73cf2df3f67b3587c5
- SHA1
  
  243450dfc8df2566368ba1323970793f977a3526
- SHA256
  
  a0ec0613ab2c742f73d52401570b7fef5ef1267c084ba18a222034661a8d966e
- SHA512
  
  42f06f3944fa9128a027364c0860370a925caa70d26a1cb482b9bbf74643a7d1a752ebd829454b2a173f2f957eba747e77592fef31c6c85683ffe02a099af2c3
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkZ:btB9g/WItCSsAGjX7e9N0hunrkZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2