bc36649eb089bd8d6a0a38d85d975fb8f4e875662fb381e5f5039fe759cdf473 | Triage

Sharing

General

Target

2024-11-20_9e43b6ce4dfcb47a4527a8fb359678d0_cryptolocker
Size

41KB
Sample

241120-czzbtazakk
MD5

9e43b6ce4dfcb47a4527a8fb359678d0
SHA1

8e7479a6c74726dd563f614a8adfddbb8cc2c625
SHA256

bc36649eb089bd8d6a0a38d85d975fb8f4e875662fb381e5f5039fe759cdf473
SHA512

9d5159cffecb6609397f48932cfc0010df52dc765f53dc56a4547c7eb29cacac537a5f3144329895ddb9693f551a16eb207e8cd1e689868e82006f963962f61f
SSDEEP

768:btB9g/WItCSsAGjX7r3BPOz6rMVYsuJb5C:btB9g/xtCSKfx0q15C

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_9e43b6ce4dfcb47a4527a8fb359678d0_cryptolocker
- Size
  
  41KB
- MD5
  
  9e43b6ce4dfcb47a4527a8fb359678d0
- SHA1
  
  8e7479a6c74726dd563f614a8adfddbb8cc2c625
- SHA256
  
  bc36649eb089bd8d6a0a38d85d975fb8f4e875662fb381e5f5039fe759cdf473
- SHA512
  
  9d5159cffecb6609397f48932cfc0010df52dc765f53dc56a4547c7eb29cacac537a5f3144329895ddb9693f551a16eb207e8cd1e689868e82006f963962f61f
- SSDEEP
  
  768:btB9g/WItCSsAGjX7r3BPOz6rMVYsuJb5C:btB9g/xtCSKfx0q15C
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2