35513e39e8d27c8a823714af13503555adbcb66e5c2faa3392590fa0a3ea74ac | Triage

Sharing

General

Target

2024-07-23_8ee5c57cb9c5ddf337e8e66740199f5f_cryptolocker
Size

38KB
Sample

240723-y76azswhpj
MD5

8ee5c57cb9c5ddf337e8e66740199f5f
SHA1

3b8abbf1b6e2aca72991ef973628fa9e5207e742
SHA256

35513e39e8d27c8a823714af13503555adbcb66e5c2faa3392590fa0a3ea74ac
SHA512

b4e286d7dd75c0d6f7cc39a8570582f2a329625160a81595f0ec9e75a83a7c6a28eac60e43c54e7c68154baad35ce58727ae68dbcfd1ea7f7e82441aef1eef1e
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+44:fT+hsMQMOtEvwDpjoIH4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-07-23_8ee5c57cb9c5ddf337e8e66740199f5f_cryptolocker
- Size
  
  38KB
- MD5
  
  8ee5c57cb9c5ddf337e8e66740199f5f
- SHA1
  
  3b8abbf1b6e2aca72991ef973628fa9e5207e742
- SHA256
  
  35513e39e8d27c8a823714af13503555adbcb66e5c2faa3392590fa0a3ea74ac
- SHA512
  
  b4e286d7dd75c0d6f7cc39a8570582f2a329625160a81595f0ec9e75a83a7c6a28eac60e43c54e7c68154baad35ce58727ae68dbcfd1ea7f7e82441aef1eef1e
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+44:fT+hsMQMOtEvwDpjoIH4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2