b7f2d0f5f50c1f78d10d5347a951e716aaa85adc7949e61bfe7b44952bcf3bc2 | Triage

Sharing

General

Target

2024-11-21_8e59add61f61fd9564595cd7dc5b74b5_cryptolocker
Size

46KB
Sample

241121-hnp7natqcm
MD5

8e59add61f61fd9564595cd7dc5b74b5
SHA1

b064f40c1eef9f9e02cb786cf3048173c3f0bcbe
SHA256

b7f2d0f5f50c1f78d10d5347a951e716aaa85adc7949e61bfe7b44952bcf3bc2
SHA512

679f2e5145ccd233aa8c4bf83f1bd52d48b5e875f6ad4dae23168f495caa035489c4a3445f4d3cc0892a834e9701ad8c34eec8a4cf67e070a11c96600d3168d0
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3U:bm74zYcgT/EkM0ryfjd3U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_8e59add61f61fd9564595cd7dc5b74b5_cryptolocker
- Size
  
  46KB
- MD5
  
  8e59add61f61fd9564595cd7dc5b74b5
- SHA1
  
  b064f40c1eef9f9e02cb786cf3048173c3f0bcbe
- SHA256
  
  b7f2d0f5f50c1f78d10d5347a951e716aaa85adc7949e61bfe7b44952bcf3bc2
- SHA512
  
  679f2e5145ccd233aa8c4bf83f1bd52d48b5e875f6ad4dae23168f495caa035489c4a3445f4d3cc0892a834e9701ad8c34eec8a4cf67e070a11c96600d3168d0
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3U:bm74zYcgT/EkM0ryfjd3U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2