637ede3b3947bf6af56c38a3e619f8a53b88cc73948994392ccf587f8f6fbc29 | Triage

Sharing

General

Target

2024-08-17_700c2624e2df664cd63503d08fc1f0e2_cryptolocker
Size

74KB
Sample

240817-fc53maxgmh
MD5

700c2624e2df664cd63503d08fc1f0e2
SHA1

cdb91c5123180b7ee457dc4c14688f83cfa9a51a
SHA256

637ede3b3947bf6af56c38a3e619f8a53b88cc73948994392ccf587f8f6fbc29
SHA512

c65f798a8042e85181fbcbfe8d1f217781f14ecdd6003c3d04e541dad805aa3d9bfdc552a7a401786341f8a71bf6726d8803f3c33b1b41c971b3fd072c3842c0
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RU:vj+jsMQMOtEvwDpj5HZYTjipvF24pO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-17_700c2624e2df664cd63503d08fc1f0e2_cryptolocker
- Size
  
  74KB
- MD5
  
  700c2624e2df664cd63503d08fc1f0e2
- SHA1
  
  cdb91c5123180b7ee457dc4c14688f83cfa9a51a
- SHA256
  
  637ede3b3947bf6af56c38a3e619f8a53b88cc73948994392ccf587f8f6fbc29
- SHA512
  
  c65f798a8042e85181fbcbfe8d1f217781f14ecdd6003c3d04e541dad805aa3d9bfdc552a7a401786341f8a71bf6726d8803f3c33b1b41c971b3fd072c3842c0
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RU:vj+jsMQMOtEvwDpj5HZYTjipvF24pO
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2