216783d75799da2fcacb29924f7ff5b028a49a10ec32ef185fd6bfe3a90c8c7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_4022e87d10c3a28d0647ca842b534b01_cryptolocker
Size

68KB
Sample

241018-cyrkksvbmn
MD5

4022e87d10c3a28d0647ca842b534b01
SHA1

3065cb73b993443f5473e1a3a65728f2a694a91d
SHA256

216783d75799da2fcacb29924f7ff5b028a49a10ec32ef185fd6bfe3a90c8c7e
SHA512

16118df871d6ff4c09a6f0bda0c061c5bb4e8df4cfe0ececd3ff44805a923df6c87c632eeb19aa0750ec6d937d8056844cabbea251ff3ceb677f255b1e003622
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299N29:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_4022e87d10c3a28d0647ca842b534b01_cryptolocker
- Size
  
  68KB
- MD5
  
  4022e87d10c3a28d0647ca842b534b01
- SHA1
  
  3065cb73b993443f5473e1a3a65728f2a694a91d
- SHA256
  
  216783d75799da2fcacb29924f7ff5b028a49a10ec32ef185fd6bfe3a90c8c7e
- SHA512
  
  16118df871d6ff4c09a6f0bda0c061c5bb4e8df4cfe0ececd3ff44805a923df6c87c632eeb19aa0750ec6d937d8056844cabbea251ff3ceb677f255b1e003622
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299N29:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2