5fee196ebd4759c0b7d962fded3455158fbec5e8ad49907128539f0f71fbff80 | Triage

Sharing

General

Target

2024-09-19_7fa57dd999d6a8dd735823b8a739cbc2_cryptolocker
Size

62KB
Sample

240919-ct4dkswcla
MD5

7fa57dd999d6a8dd735823b8a739cbc2
SHA1

9761cd85849992da0f297d9bfc214076b4ad0e39
SHA256

5fee196ebd4759c0b7d962fded3455158fbec5e8ad49907128539f0f71fbff80
SHA512

b8184dc95a37dbe1899c344b86f151655a5792140261c5d1908fb8721cfd895ff578489abb183ce45808ca611b475cab2682b32d0edd5b0240df7c1a376c7b95
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpEtm:6j+1NMOtEvwDpjr8ox8UDEp0m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_7fa57dd999d6a8dd735823b8a739cbc2_cryptolocker
- Size
  
  62KB
- MD5
  
  7fa57dd999d6a8dd735823b8a739cbc2
- SHA1
  
  9761cd85849992da0f297d9bfc214076b4ad0e39
- SHA256
  
  5fee196ebd4759c0b7d962fded3455158fbec5e8ad49907128539f0f71fbff80
- SHA512
  
  b8184dc95a37dbe1899c344b86f151655a5792140261c5d1908fb8721cfd895ff578489abb183ce45808ca611b475cab2682b32d0edd5b0240df7c1a376c7b95
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpEtm:6j+1NMOtEvwDpjr8ox8UDEp0m
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2