4a03c1580c4f8a55eccf6bc4a10c2bb1ef6c117890d4503c3536db918b23751e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_d63ddef90305af797b6476d18f1687f1_cryptolocker
Size

38KB
Sample

241018-f8rj4szena
MD5

d63ddef90305af797b6476d18f1687f1
SHA1

33ced0540225a347c789513e56b76cb51e85e0ed
SHA256

4a03c1580c4f8a55eccf6bc4a10c2bb1ef6c117890d4503c3536db918b23751e
SHA512

64e3f6203b278b606b50cb360028d1b4252cbc8e74faa7928b1d0ecb4a8a4ac36083e3eccefb49055fb709bb2db1ef1d242805872646a26f9187772b95d09152
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaacQsdRLI4:X6QFElP6n+gJQMOtEvwDpjBsQp4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_d63ddef90305af797b6476d18f1687f1_cryptolocker
- Size
  
  38KB
- MD5
  
  d63ddef90305af797b6476d18f1687f1
- SHA1
  
  33ced0540225a347c789513e56b76cb51e85e0ed
- SHA256
  
  4a03c1580c4f8a55eccf6bc4a10c2bb1ef6c117890d4503c3536db918b23751e
- SHA512
  
  64e3f6203b278b606b50cb360028d1b4252cbc8e74faa7928b1d0ecb4a8a4ac36083e3eccefb49055fb709bb2db1ef1d242805872646a26f9187772b95d09152
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaacQsdRLI4:X6QFElP6n+gJQMOtEvwDpjBsQp4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2