46fd1d0cff322d94259be3cfcdf9e1679de5962ff2c569a62e8e06755a77512f | Triage

Sharing

General

Target

2024-11-02_1370f4900667c38b3b3626e0aa3e04b0_cryptolocker
Size

31KB
Sample

241102-g8xxkazhnk
MD5

1370f4900667c38b3b3626e0aa3e04b0
SHA1

effeb21c642a8a002f4822a94360a5c140d06bf0
SHA256

46fd1d0cff322d94259be3cfcdf9e1679de5962ff2c569a62e8e06755a77512f
SHA512

24a1161f36502ee677146d645bb893e8014bbbe8f29b1a814dcc2f124941e4e08aac5bc9413a579e3a12df3ac4d6577211bffcab49628910fb8b8e517f696d1c
SSDEEP

768:I6LsoEEeegiZPvEhHSG+gbIBrtOOtEvwDpj79:I6QFElP6n+gs5MOtEvwDpjp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_1370f4900667c38b3b3626e0aa3e04b0_cryptolocker
- Size
  
  31KB
- MD5
  
  1370f4900667c38b3b3626e0aa3e04b0
- SHA1
  
  effeb21c642a8a002f4822a94360a5c140d06bf0
- SHA256
  
  46fd1d0cff322d94259be3cfcdf9e1679de5962ff2c569a62e8e06755a77512f
- SHA512
  
  24a1161f36502ee677146d645bb893e8014bbbe8f29b1a814dcc2f124941e4e08aac5bc9413a579e3a12df3ac4d6577211bffcab49628910fb8b8e517f696d1c
- SSDEEP
  
  768:I6LsoEEeegiZPvEhHSG+gbIBrtOOtEvwDpj79:I6QFElP6n+gs5MOtEvwDpjp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2