74b2b4b225ae74dd87ab174743517426a3aeee1c263963f312177f4f1230e961 | Triage

Sharing

General

Target

2024-09-19_4c7ddd5659e36149edcac682ab11229f_cryptolocker
Size

48KB
Sample

240919-e2k83s1brb
MD5

4c7ddd5659e36149edcac682ab11229f
SHA1

59c113c86ea5ec4904701b3ee2bfc19de594a827
SHA256

74b2b4b225ae74dd87ab174743517426a3aeee1c263963f312177f4f1230e961
SHA512

a0193d62a365277247c490f834e5eeebad3679c1a441814813676f1b449c19dba9c3b986a5470a789866a57d183eac86585c64139dd1e82e29f97913adb1a981
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPcd:P6QFElP6k+MRQMOtEvwDpjBQpVX9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_4c7ddd5659e36149edcac682ab11229f_cryptolocker
- Size
  
  48KB
- MD5
  
  4c7ddd5659e36149edcac682ab11229f
- SHA1
  
  59c113c86ea5ec4904701b3ee2bfc19de594a827
- SHA256
  
  74b2b4b225ae74dd87ab174743517426a3aeee1c263963f312177f4f1230e961
- SHA512
  
  a0193d62a365277247c490f834e5eeebad3679c1a441814813676f1b449c19dba9c3b986a5470a789866a57d183eac86585c64139dd1e82e29f97913adb1a981
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPcd:P6QFElP6k+MRQMOtEvwDpjBQpVX9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2