9ba1135fc1cb815feac4940f0cbe6d04fae9a26d6cd7b6219185054c2fe3e1d2 | Triage

Sharing

General

Target

2024-11-20_a17c054cc974a49f013e7423a1731cfd_cryptolocker
Size

46KB
Sample

241120-dbjrwsyeng
MD5

a17c054cc974a49f013e7423a1731cfd
SHA1

f340b59a38d2a921e81981825af1aaebf46a92c7
SHA256

9ba1135fc1cb815feac4940f0cbe6d04fae9a26d6cd7b6219185054c2fe3e1d2
SHA512

6d5d6eaf5984a0a3f1a9e0914f2bb8b7f3bdec7e970947a78aba240b7423062a2a85e4be0e43d10d2aa07ab83bb99152387d34e7a5f8ae70ac14af69a813a119
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkY:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_a17c054cc974a49f013e7423a1731cfd_cryptolocker
- Size
  
  46KB
- MD5
  
  a17c054cc974a49f013e7423a1731cfd
- SHA1
  
  f340b59a38d2a921e81981825af1aaebf46a92c7
- SHA256
  
  9ba1135fc1cb815feac4940f0cbe6d04fae9a26d6cd7b6219185054c2fe3e1d2
- SHA512
  
  6d5d6eaf5984a0a3f1a9e0914f2bb8b7f3bdec7e970947a78aba240b7423062a2a85e4be0e43d10d2aa07ab83bb99152387d34e7a5f8ae70ac14af69a813a119
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkY:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2