936f6d7432c4e9b20db9b889b0b88cfc38471ee29738c1af544c495849c40295 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_02ba5a8277f93d437cf7c55d2fdc9b78_cryptolocker
Size

63KB
Sample

241018-dx183avajd
MD5

02ba5a8277f93d437cf7c55d2fdc9b78
SHA1

55e36cac432239aaeb17a5655bb39762589a5a74
SHA256

936f6d7432c4e9b20db9b889b0b88cfc38471ee29738c1af544c495849c40295
SHA512

f898ee221cc213ac8c6182bc45f6e7dd558d043801a616e700163f654f33bf83ba71296fd1aa2c6372a29d44cd98416ef31d434c98c77fd1c40927ecf9bbe317
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucv:ZVxkGOtEvwDpjcac

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_02ba5a8277f93d437cf7c55d2fdc9b78_cryptolocker
- Size
  
  63KB
- MD5
  
  02ba5a8277f93d437cf7c55d2fdc9b78
- SHA1
  
  55e36cac432239aaeb17a5655bb39762589a5a74
- SHA256
  
  936f6d7432c4e9b20db9b889b0b88cfc38471ee29738c1af544c495849c40295
- SHA512
  
  f898ee221cc213ac8c6182bc45f6e7dd558d043801a616e700163f654f33bf83ba71296fd1aa2c6372a29d44cd98416ef31d434c98c77fd1c40927ecf9bbe317
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucv:ZVxkGOtEvwDpjcac
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2