99900f64dd95e86c41f686e03c7ccac7f3835a1e0d20904b7af9802d112ea113 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_464026d56182671fb176b0e6df3569dd_cryptolocker
Size

57KB
Sample

241018-d7q6vavena
MD5

464026d56182671fb176b0e6df3569dd
SHA1

a78c2f36a9aa07f5e5a533c06d784d39875820e4
SHA256

99900f64dd95e86c41f686e03c7ccac7f3835a1e0d20904b7af9802d112ea113
SHA512

14fc19388ee7154ecd1c5a147c6a3d2a80dc8cdfa57eaf18afc2fa3f09a9fa3073610bf1c9292bb46df82eae2a1da76891ffac453e034c74c1bb46663a6c4fd6
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/eUum:6j+1NMOtEvwDpjr8oxExek

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_464026d56182671fb176b0e6df3569dd_cryptolocker
- Size
  
  57KB
- MD5
  
  464026d56182671fb176b0e6df3569dd
- SHA1
  
  a78c2f36a9aa07f5e5a533c06d784d39875820e4
- SHA256
  
  99900f64dd95e86c41f686e03c7ccac7f3835a1e0d20904b7af9802d112ea113
- SHA512
  
  14fc19388ee7154ecd1c5a147c6a3d2a80dc8cdfa57eaf18afc2fa3f09a9fa3073610bf1c9292bb46df82eae2a1da76891ffac453e034c74c1bb46663a6c4fd6
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/eUum:6j+1NMOtEvwDpjr8oxExek
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2