b37c1094407d7242a4b5874e93afb8d0897229e2aec0491629512f441a3a9f16 | Triage

Sharing

General

Target

2024-11-20_f04e093b52c8549ae73bed11c87146c8_cryptolocker
Size

73KB
Sample

241120-d8l9aavmbq
MD5

f04e093b52c8549ae73bed11c87146c8
SHA1

6cbc3a7465e4c3cad5d225bbec595cda728e042d
SHA256

b37c1094407d7242a4b5874e93afb8d0897229e2aec0491629512f441a3a9f16
SHA512

8ce81a52712e3a95d6a59064c88edf19c8ddc6e081bab550c2b4d31877a152ba3f4c2ae690c2da33c562bc058c31b2c4c0ffd7a27ed87be35a2429ae39998b56
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5RF:DW60sllyWOtEvwDpjwF85m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_f04e093b52c8549ae73bed11c87146c8_cryptolocker
- Size
  
  73KB
- MD5
  
  f04e093b52c8549ae73bed11c87146c8
- SHA1
  
  6cbc3a7465e4c3cad5d225bbec595cda728e042d
- SHA256
  
  b37c1094407d7242a4b5874e93afb8d0897229e2aec0491629512f441a3a9f16
- SHA512
  
  8ce81a52712e3a95d6a59064c88edf19c8ddc6e081bab550c2b4d31877a152ba3f4c2ae690c2da33c562bc058c31b2c4c0ffd7a27ed87be35a2429ae39998b56
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5RF:DW60sllyWOtEvwDpjwF85m
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2