b4ab21cbb5161c662962e17912609cf310ddc704736dac5b5796c2e4b8a0fac0 | Triage

Sharing

General

Target

2024-09-15_5d3b5341a76a87224cf364d804a881ab_cryptolocker
Size

46KB
Sample

240915-mshetszhmk
MD5

5d3b5341a76a87224cf364d804a881ab
SHA1

76e622aa8c9e4f397b278e29647f9b91527c8b28
SHA256

b4ab21cbb5161c662962e17912609cf310ddc704736dac5b5796c2e4b8a0fac0
SHA512

4bdd1e1eb19bdb27aff5360530c2a7aa0635e5859f6241ace3bfff7147fd6a08353c2e8d810bb5a29ae18229ea4a5e0053b32df952d74999b5292183da34e84a
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP+W:P6QFElP6k+MRQMOtEvwDpjBQpVXg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-15_5d3b5341a76a87224cf364d804a881ab_cryptolocker
- Size
  
  46KB
- MD5
  
  5d3b5341a76a87224cf364d804a881ab
- SHA1
  
  76e622aa8c9e4f397b278e29647f9b91527c8b28
- SHA256
  
  b4ab21cbb5161c662962e17912609cf310ddc704736dac5b5796c2e4b8a0fac0
- SHA512
  
  4bdd1e1eb19bdb27aff5360530c2a7aa0635e5859f6241ace3bfff7147fd6a08353c2e8d810bb5a29ae18229ea4a5e0053b32df952d74999b5292183da34e84a
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP+W:P6QFElP6k+MRQMOtEvwDpjBQpVXg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2