992fa6f934750a9b67c38bbf314e83f486ee08b584c891ce16e830f44ba3445b | Triage

Sharing

General

Target

2024-11-02_c0c0a766cf6fb372cc5ed4a12515991a_cryptolocker
Size

46KB
Sample

241102-g8vgfa1pgk
MD5

c0c0a766cf6fb372cc5ed4a12515991a
SHA1

c1bc3d6aa694f3b1b56af5fe1850d12eb50fb2eb
SHA256

992fa6f934750a9b67c38bbf314e83f486ee08b584c891ce16e830f44ba3445b
SHA512

b1105b057cb40993a7119b873ff9927c513165cf5f47f25fcbcb65f9b6d025884bd647b50ae97f8eec057b795527021987294828f384a20d1b2dc729c03b4065
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUknq2:bm74zYcgT/EkM0ryfjdnq2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_c0c0a766cf6fb372cc5ed4a12515991a_cryptolocker
- Size
  
  46KB
- MD5
  
  c0c0a766cf6fb372cc5ed4a12515991a
- SHA1
  
  c1bc3d6aa694f3b1b56af5fe1850d12eb50fb2eb
- SHA256
  
  992fa6f934750a9b67c38bbf314e83f486ee08b584c891ce16e830f44ba3445b
- SHA512
  
  b1105b057cb40993a7119b873ff9927c513165cf5f47f25fcbcb65f9b6d025884bd647b50ae97f8eec057b795527021987294828f384a20d1b2dc729c03b4065
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUknq2:bm74zYcgT/EkM0ryfjdnq2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2