e94a83cb04802d323fc2f7b68f2def68b5ebb224868fe7ed8cb321bc09b9b2ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_2f6c6ff54c2f9b732545ea4ec178b14b_cryptolocker
Size

71KB
Sample

241018-e2eraszerp
MD5

2f6c6ff54c2f9b732545ea4ec178b14b
SHA1

4d3de6ccfc1557de29f547d5a3b39d37027ef9b4
SHA256

e94a83cb04802d323fc2f7b68f2def68b5ebb224868fe7ed8cb321bc09b9b2ce
SHA512

31ed76efa310f2c6a1918b23274a4b770599752454c078011b68bf3966750ebb45f50d547b95b3e5bd1c59c7933daaa47ff586adb986476e798834ce7b8b6008
SSDEEP

768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/d0:i5nkFGMOtEvwDpjNbwQEI8UZD6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_2f6c6ff54c2f9b732545ea4ec178b14b_cryptolocker
- Size
  
  71KB
- MD5
  
  2f6c6ff54c2f9b732545ea4ec178b14b
- SHA1
  
  4d3de6ccfc1557de29f547d5a3b39d37027ef9b4
- SHA256
  
  e94a83cb04802d323fc2f7b68f2def68b5ebb224868fe7ed8cb321bc09b9b2ce
- SHA512
  
  31ed76efa310f2c6a1918b23274a4b770599752454c078011b68bf3966750ebb45f50d547b95b3e5bd1c59c7933daaa47ff586adb986476e798834ce7b8b6008
- SSDEEP
  
  768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/d0:i5nkFGMOtEvwDpjNbwQEI8UZD6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2