292d3e41fc011531a46c4aeddc906b2d1015fad7bdc8f8db65b7c1c869bdb82d | Triage

Sharing

General

Target

2024-11-21_f2f8fa4b26cb423b70efa0a74b463e0c_cryptolocker
Size

44KB
Sample

241121-jpj8gazbkb
MD5

f2f8fa4b26cb423b70efa0a74b463e0c
SHA1

58b5bf29bdc93a95bd9c21de6fc7ba61475954ad
SHA256

292d3e41fc011531a46c4aeddc906b2d1015fad7bdc8f8db65b7c1c869bdb82d
SHA512

8c0cd5612c37b440fbce0745e6649a747fa2f8616354b1cfa2edb363cbe7dac7928a324ff896e60aac4ce0b2ceab31a17c23d30c34f469fe7174341234f48cbc
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WJL:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_f2f8fa4b26cb423b70efa0a74b463e0c_cryptolocker
- Size
  
  44KB
- MD5
  
  f2f8fa4b26cb423b70efa0a74b463e0c
- SHA1
  
  58b5bf29bdc93a95bd9c21de6fc7ba61475954ad
- SHA256
  
  292d3e41fc011531a46c4aeddc906b2d1015fad7bdc8f8db65b7c1c869bdb82d
- SHA512
  
  8c0cd5612c37b440fbce0745e6649a747fa2f8616354b1cfa2edb363cbe7dac7928a324ff896e60aac4ce0b2ceab31a17c23d30c34f469fe7174341234f48cbc
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WJL:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2