11c8174892ab1ac0c9b3ff2567f9000c76d41464ab13a33877b94ea60e80d3b1 | Triage

Sharing

General

Target

2024-09-05_e7f8e1ccc572f1f6153f06f009ed9f51_cryptolocker
Size

40KB
Sample

240905-pgdcvazhpm
MD5

e7f8e1ccc572f1f6153f06f009ed9f51
SHA1

c7560b84a613c6f71b507ad8f665cf732746b42d
SHA256

11c8174892ab1ac0c9b3ff2567f9000c76d41464ab13a33877b94ea60e80d3b1
SHA512

487875cab117f7ee0519e699bf421e1a2648edb28b3422208472c4d887a10020886b908e78279e04b63c98c7fb1eb5e19bf8548136ecfe00084861092963c076
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuD+r:ZzFbxmLPWQMOtEvwDpjLeJAsKca

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_e7f8e1ccc572f1f6153f06f009ed9f51_cryptolocker
- Size
  
  40KB
- MD5
  
  e7f8e1ccc572f1f6153f06f009ed9f51
- SHA1
  
  c7560b84a613c6f71b507ad8f665cf732746b42d
- SHA256
  
  11c8174892ab1ac0c9b3ff2567f9000c76d41464ab13a33877b94ea60e80d3b1
- SHA512
  
  487875cab117f7ee0519e699bf421e1a2648edb28b3422208472c4d887a10020886b908e78279e04b63c98c7fb1eb5e19bf8548136ecfe00084861092963c076
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuD+r:ZzFbxmLPWQMOtEvwDpjLeJAsKca
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2