09d69d00f32c850c0e345d948fc3d33013497103ca728f5a32f789255004c764 | Triage

Sharing

General

Target

2024-11-20_44b9b89245610050aa0c82e7fdf72317_cryptolocker
Size

46KB
Sample

241120-c9n9layndv
MD5

44b9b89245610050aa0c82e7fdf72317
SHA1

9223f469d38646aaede3c77df0fc6ce6101c882a
SHA256

09d69d00f32c850c0e345d948fc3d33013497103ca728f5a32f789255004c764
SHA512

a4a6d29f38ae3ea899d05b07c249f0be9e107eed46b78776b9d174c9fe71893277cfb9ebe6af65179d01b9db36c25ad8b2c93e7074512f45088bfb7d94a5a24c
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hkp:X6QFElP6n+gJQMOtEvwDpjBmzDkWDto

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_44b9b89245610050aa0c82e7fdf72317_cryptolocker
- Size
  
  46KB
- MD5
  
  44b9b89245610050aa0c82e7fdf72317
- SHA1
  
  9223f469d38646aaede3c77df0fc6ce6101c882a
- SHA256
  
  09d69d00f32c850c0e345d948fc3d33013497103ca728f5a32f789255004c764
- SHA512
  
  a4a6d29f38ae3ea899d05b07c249f0be9e107eed46b78776b9d174c9fe71893277cfb9ebe6af65179d01b9db36c25ad8b2c93e7074512f45088bfb7d94a5a24c
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hkp:X6QFElP6n+gJQMOtEvwDpjBmzDkWDto
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2