ba36a022eb4976d8cf84bcfb7ae1e786d6e41665d3b4a66f4a8fc108bb417a98 | Triage

Sharing

General

Target

2024-10-31_f4e891c48a415f94ff23b27a9d0fe73c_cryptolocker
Size

69KB
Sample

241031-j58wrswlcj
MD5

f4e891c48a415f94ff23b27a9d0fe73c
SHA1

febd48803dc743f84a96b08e614e155b20df520d
SHA256

ba36a022eb4976d8cf84bcfb7ae1e786d6e41665d3b4a66f4a8fc108bb417a98
SHA512

8de3afb15cd3fa611dfbff70890225a98a96cb3d9d8e900a256caa301977667f43f21d3815b7ca2102396876b0d053453684a4e8fefbbb32c75a616e87677e44
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEa:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7S

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_f4e891c48a415f94ff23b27a9d0fe73c_cryptolocker
- Size
  
  69KB
- MD5
  
  f4e891c48a415f94ff23b27a9d0fe73c
- SHA1
  
  febd48803dc743f84a96b08e614e155b20df520d
- SHA256
  
  ba36a022eb4976d8cf84bcfb7ae1e786d6e41665d3b4a66f4a8fc108bb417a98
- SHA512
  
  8de3afb15cd3fa611dfbff70890225a98a96cb3d9d8e900a256caa301977667f43f21d3815b7ca2102396876b0d053453684a4e8fefbbb32c75a616e87677e44
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEa:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7S
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2