9332e77eb48770745d11aceba93bc5c63cd6f8b6d39ba36746f10f1d92c26429 | Triage

Sharing

General

Target

2024-11-20_941e72bc1f1e0e3c5d74d98211376956_cryptolocker
Size

32KB
Sample

241120-d37yss1apm
MD5

941e72bc1f1e0e3c5d74d98211376956
SHA1

7a7c6c378166b6ed3dad9d2df78b434d4bda5620
SHA256

9332e77eb48770745d11aceba93bc5c63cd6f8b6d39ba36746f10f1d92c26429
SHA512

bb58e9ebb36e36161dd9fb9b7d27863286c9f9a4c88225ec15d59fb59555b2248e46b5621bf29bf18f23ada3df2157939c99001038446f84b6001950626b4519
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjB9iNLY:X6QFElP6n+gJQMOtEvwDpjBN

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_941e72bc1f1e0e3c5d74d98211376956_cryptolocker
- Size
  
  32KB
- MD5
  
  941e72bc1f1e0e3c5d74d98211376956
- SHA1
  
  7a7c6c378166b6ed3dad9d2df78b434d4bda5620
- SHA256
  
  9332e77eb48770745d11aceba93bc5c63cd6f8b6d39ba36746f10f1d92c26429
- SHA512
  
  bb58e9ebb36e36161dd9fb9b7d27863286c9f9a4c88225ec15d59fb59555b2248e46b5621bf29bf18f23ada3df2157939c99001038446f84b6001950626b4519
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjB9iNLY:X6QFElP6n+gJQMOtEvwDpjBN
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2