aa547880864f496ecb592669fe3a874f8373d24455cd2b4c3a1040784689ba4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_fb41426f0ae284aafa862765b2476a74_cryptolocker
Size

36KB
Sample

241018-ck4mzszhra
MD5

fb41426f0ae284aafa862765b2476a74
SHA1

e07dc4d30c2db376f6521e4953c207f6b8325d7c
SHA256

aa547880864f496ecb592669fe3a874f8373d24455cd2b4c3a1040784689ba4b
SHA512

b3184457d717fb47867d192308ce05cc1b84177ad463c1a1c2c6bbebeb45582f7c82192a129efa087a7cddbb6c3aeaa7c26fe8819cd95a7fe115fc86cc6f3bc3
SSDEEP

384:+cX+ni9VCr5nQI021q4VQBqURYpetOOtEvwDpjqIGRxzOP51FqQLicn3f3yr91:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv41

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_fb41426f0ae284aafa862765b2476a74_cryptolocker
- Size
  
  36KB
- MD5
  
  fb41426f0ae284aafa862765b2476a74
- SHA1
  
  e07dc4d30c2db376f6521e4953c207f6b8325d7c
- SHA256
  
  aa547880864f496ecb592669fe3a874f8373d24455cd2b4c3a1040784689ba4b
- SHA512
  
  b3184457d717fb47867d192308ce05cc1b84177ad463c1a1c2c6bbebeb45582f7c82192a129efa087a7cddbb6c3aeaa7c26fe8819cd95a7fe115fc86cc6f3bc3
- SSDEEP
  
  384:+cX+ni9VCr5nQI021q4VQBqURYpetOOtEvwDpjqIGRxzOP51FqQLicn3f3yr91:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv41
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2