dc23d08504a34a60410079c50a4d88dd3a03d3f2027b06a9edc15c613fd4ee8a | Triage

Sharing

General

Target

2024-10-31_2a767ced2540d530ae03e36dbe873ffa_cryptolocker
Size

39KB
Sample

241031-kagpgavcme
MD5

2a767ced2540d530ae03e36dbe873ffa
SHA1

6d6a6be9ced25510c172cc4de923d65d0d2d0a18
SHA256

dc23d08504a34a60410079c50a4d88dd3a03d3f2027b06a9edc15c613fd4ee8a
SHA512

229612f5345943c43100e37525ad86bddbccafe47b20f857ed022572a8cf284b68e4d58373230b18fb8347d06bde41e600b7c2808db2f879edf4ca7fe3476cc4
SSDEEP

768:b7o/2n1TCraU6GD1a4Xcn62TUdcuQlqJ51mwl:bc/y2lm6Y0AqJ51mwl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_2a767ced2540d530ae03e36dbe873ffa_cryptolocker
- Size
  
  39KB
- MD5
  
  2a767ced2540d530ae03e36dbe873ffa
- SHA1
  
  6d6a6be9ced25510c172cc4de923d65d0d2d0a18
- SHA256
  
  dc23d08504a34a60410079c50a4d88dd3a03d3f2027b06a9edc15c613fd4ee8a
- SHA512
  
  229612f5345943c43100e37525ad86bddbccafe47b20f857ed022572a8cf284b68e4d58373230b18fb8347d06bde41e600b7c2808db2f879edf4ca7fe3476cc4
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4Xcn62TUdcuQlqJ51mwl:bc/y2lm6Y0AqJ51mwl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2