2f52cf797f40794e0dd86f9845620ca734d31c189596c271e5c2f5c92b11988d | Triage

Sharing

General

Target

2024-08-10_21072090005d2c3bb3484c34fe374479_cryptolocker
Size

30KB
Sample

240810-edpxcsvblp
MD5

21072090005d2c3bb3484c34fe374479
SHA1

f20c03d711a2373edbe5cd3fc79decfea7208c40
SHA256

2f52cf797f40794e0dd86f9845620ca734d31c189596c271e5c2f5c92b11988d
SHA512

effe12456c5a40218ff506b6f1b61d9bc60a32f3a053b13f41565265a619e26977118f4548d5587db7a43174dd3960217ce5909dcea1687720584532c272bff5
SSDEEP

384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hz:vQz7yVEhs9+js1SQtOOtEvwDpjz9+9s

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-10_21072090005d2c3bb3484c34fe374479_cryptolocker
- Size
  
  30KB
- MD5
  
  21072090005d2c3bb3484c34fe374479
- SHA1
  
  f20c03d711a2373edbe5cd3fc79decfea7208c40
- SHA256
  
  2f52cf797f40794e0dd86f9845620ca734d31c189596c271e5c2f5c92b11988d
- SHA512
  
  effe12456c5a40218ff506b6f1b61d9bc60a32f3a053b13f41565265a619e26977118f4548d5587db7a43174dd3960217ce5909dcea1687720584532c272bff5
- SSDEEP
  
  384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hz:vQz7yVEhs9+js1SQtOOtEvwDpjz9+9s
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2