53f8ddfa362c3fe9b110d5fceaf17b272ca1c9452c805df5bde4218b6b3a13f0 | Triage

Sharing

General

Target

2024-09-14_ca7bd26087bad3606b203fce95cc38dd_cryptolocker
Size

53KB
Sample

240914-efpdlswdnb
MD5

ca7bd26087bad3606b203fce95cc38dd
SHA1

e4e87eb7fe72ce67a007247ddf43cb7e4548cacf
SHA256

53f8ddfa362c3fe9b110d5fceaf17b272ca1c9452c805df5bde4218b6b3a13f0
SHA512

6f96cf0e53a1627c90b07a127551bfb5c3d13adba3b6f76c6ac6471219d093fdd0df8113ade626ad1c56abd69e3634fbe11b82c8955804d3a9d0b92a0ba10437
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszDr6PF:79mqyNhQMOtEvwDpjBxe8TpXRSDePF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-14_ca7bd26087bad3606b203fce95cc38dd_cryptolocker
- Size
  
  53KB
- MD5
  
  ca7bd26087bad3606b203fce95cc38dd
- SHA1
  
  e4e87eb7fe72ce67a007247ddf43cb7e4548cacf
- SHA256
  
  53f8ddfa362c3fe9b110d5fceaf17b272ca1c9452c805df5bde4218b6b3a13f0
- SHA512
  
  6f96cf0e53a1627c90b07a127551bfb5c3d13adba3b6f76c6ac6471219d093fdd0df8113ade626ad1c56abd69e3634fbe11b82c8955804d3a9d0b92a0ba10437
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszDr6PF:79mqyNhQMOtEvwDpjBxe8TpXRSDePF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2