0c34658541fbf4ce0b2b15ecf64d32b821d420a19b37bbac387f92f3a40cd61b | Triage

Sharing

General

Target

2024-11-20_8ecb2f6f913e775097a2578ab6df2ba9_cryptolocker
Size

46KB
Sample

241120-d3wwja1anr
MD5

8ecb2f6f913e775097a2578ab6df2ba9
SHA1

1b5f582d74a412e3190a2b10e1497a63ebe62c75
SHA256

0c34658541fbf4ce0b2b15ecf64d32b821d420a19b37bbac387f92f3a40cd61b
SHA512

f900205df8209a8814e6bcd100eba269dfd84bae59cab9150d57eb4ad626620c1c5872cb54662afcd4ae1b2ef545fbb6466e8563ee4e91062088355f064bdb90
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hkedi:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_8ecb2f6f913e775097a2578ab6df2ba9_cryptolocker
- Size
  
  46KB
- MD5
  
  8ecb2f6f913e775097a2578ab6df2ba9
- SHA1
  
  1b5f582d74a412e3190a2b10e1497a63ebe62c75
- SHA256
  
  0c34658541fbf4ce0b2b15ecf64d32b821d420a19b37bbac387f92f3a40cd61b
- SHA512
  
  f900205df8209a8814e6bcd100eba269dfd84bae59cab9150d57eb4ad626620c1c5872cb54662afcd4ae1b2ef545fbb6466e8563ee4e91062088355f064bdb90
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hkedi:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtw
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2