ac6568811f0e0c4dc1abda12b7d876fb65b97c6ffd0f5431d8e5b6e2e1bb746b | Triage

Sharing

General

Target

2024-10-31_9d7b161b16be41d5f90d0c2c3c2c0e46_cryptolocker
Size

41KB
Sample

241031-kdfxcavdkb
MD5

9d7b161b16be41d5f90d0c2c3c2c0e46
SHA1

6604b8aada0d3cbd52cae75d079717df36730ecb
SHA256

ac6568811f0e0c4dc1abda12b7d876fb65b97c6ffd0f5431d8e5b6e2e1bb746b
SHA512

aa24736bedd32c312995e4897d6226085b5f42d24cf0c38aa1ef3031e496b8a7a9bdb465db378cdbc8943fedc5dfd7c82ee7027e53ce41f88dc65f61a6e7ec87
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCw0xM:X6QFElP6n+gJQMOtEvwDpjBmzDU5xM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_9d7b161b16be41d5f90d0c2c3c2c0e46_cryptolocker
- Size
  
  41KB
- MD5
  
  9d7b161b16be41d5f90d0c2c3c2c0e46
- SHA1
  
  6604b8aada0d3cbd52cae75d079717df36730ecb
- SHA256
  
  ac6568811f0e0c4dc1abda12b7d876fb65b97c6ffd0f5431d8e5b6e2e1bb746b
- SHA512
  
  aa24736bedd32c312995e4897d6226085b5f42d24cf0c38aa1ef3031e496b8a7a9bdb465db378cdbc8943fedc5dfd7c82ee7027e53ce41f88dc65f61a6e7ec87
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCw0xM:X6QFElP6n+gJQMOtEvwDpjBmzDU5xM
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2