3ac297f2ca0b89e4d3328777c2b2f1b538b6fbb43317a8cf3306a231ea80406a | Triage

Sharing

General

Target

2024-11-01_ae0a1ee00e09293d942d8ff65067d932_cryptolocker
Size

32KB
Sample

241101-wwlq4avpbq
MD5

ae0a1ee00e09293d942d8ff65067d932
SHA1

1220f97cb4f235ad140ba1cd74f583a5486c36b0
SHA256

3ac297f2ca0b89e4d3328777c2b2f1b538b6fbb43317a8cf3306a231ea80406a
SHA512

a51715b8c44ef8becacdea4aa7f96de5f0b1bb51c3e13234750b2c39c6183f19a41cd270ab1830c214fe5b5e5dab5eade559b0b03c4bd2543ed986ec67833133
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzogFzpjufAq18s8:bAvJCYOOvbRPDEgXVFzpCYV/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-01_ae0a1ee00e09293d942d8ff65067d932_cryptolocker
- Size
  
  32KB
- MD5
  
  ae0a1ee00e09293d942d8ff65067d932
- SHA1
  
  1220f97cb4f235ad140ba1cd74f583a5486c36b0
- SHA256
  
  3ac297f2ca0b89e4d3328777c2b2f1b538b6fbb43317a8cf3306a231ea80406a
- SHA512
  
  a51715b8c44ef8becacdea4aa7f96de5f0b1bb51c3e13234750b2c39c6183f19a41cd270ab1830c214fe5b5e5dab5eade559b0b03c4bd2543ed986ec67833133
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzogFzpjufAq18s8:bAvJCYOOvbRPDEgXVFzpCYV/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2