8bc1f98cdf5ea729d8ad3177d6f87179ce344622d141cb326e741a188bff0375 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_fae1dad51dafb89dc1efa4debaf679b5_cryptolocker
Size

36KB
Sample

241018-mj5h1asbjh
MD5

fae1dad51dafb89dc1efa4debaf679b5
SHA1

bb89c9b6295483b2818aa5c325049f29101b321d
SHA256

8bc1f98cdf5ea729d8ad3177d6f87179ce344622d141cb326e741a188bff0375
SHA512

cc5a2e764f525495eb56a2a9425061d8af576389a0b0c4724720b30de3f82949275cf39ed1752d767fb5ed57a2119cb4deab6690d8690806bb1f32bdb42e1a46
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+72kmGYjlo:bgX4zYcgTEu6QOaryfjqDlC7rYZo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_fae1dad51dafb89dc1efa4debaf679b5_cryptolocker
- Size
  
  36KB
- MD5
  
  fae1dad51dafb89dc1efa4debaf679b5
- SHA1
  
  bb89c9b6295483b2818aa5c325049f29101b321d
- SHA256
  
  8bc1f98cdf5ea729d8ad3177d6f87179ce344622d141cb326e741a188bff0375
- SHA512
  
  cc5a2e764f525495eb56a2a9425061d8af576389a0b0c4724720b30de3f82949275cf39ed1752d767fb5ed57a2119cb4deab6690d8690806bb1f32bdb42e1a46
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+72kmGYjlo:bgX4zYcgTEu6QOaryfjqDlC7rYZo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2