e6afe34e02add25be3bee5a529ccf76d786e47324874476a68cfde03477126f0 | Triage

Sharing

General

Target

2024-09-19_56e5ffe4b537910166568eb60003bcfe_cryptolocker
Size

45KB
Sample

240919-e21c1a1drn
MD5

56e5ffe4b537910166568eb60003bcfe
SHA1

d4e625a47ec5710506c71ee4cdfe742ed647678e
SHA256

e6afe34e02add25be3bee5a529ccf76d786e47324874476a68cfde03477126f0
SHA512

00c164b51f535d0c85fe36d5377557652f141ffe25186664e93c15e3839c8a600ca930f165ff7fb199ca81fa83d8ed78b90674b47874bd141c03fe39237c3aff
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP3:P6QFElP6k+MRQMOtEvwDpjBQpVXi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_56e5ffe4b537910166568eb60003bcfe_cryptolocker
- Size
  
  45KB
- MD5
  
  56e5ffe4b537910166568eb60003bcfe
- SHA1
  
  d4e625a47ec5710506c71ee4cdfe742ed647678e
- SHA256
  
  e6afe34e02add25be3bee5a529ccf76d786e47324874476a68cfde03477126f0
- SHA512
  
  00c164b51f535d0c85fe36d5377557652f141ffe25186664e93c15e3839c8a600ca930f165ff7fb199ca81fa83d8ed78b90674b47874bd141c03fe39237c3aff
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP3:P6QFElP6k+MRQMOtEvwDpjBQpVXi
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2