fc5c74f531dfeba53d4ec2192d6b2f720b34cff7213e8b60bb2e4672ebe0fd11 | Triage

Sharing

General

Target

2024-09-19_99258125853fc1184494d72162e523ab_cryptolocker
Size

32KB
Sample

240919-e5axhs1cqe
MD5

99258125853fc1184494d72162e523ab
SHA1

e0118cb02ab519c490c29d3c3e1489052cbf57c6
SHA256

fc5c74f531dfeba53d4ec2192d6b2f720b34cff7213e8b60bb2e4672ebe0fd11
SHA512

873a719dfd5788ddee3125c360e7ed2f11fe67c9c72e30d1b7acc41ba1afc3c1287e1d4fa129895226100a24fdeacacf296be34abe4579c6e533f070b9bac357
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoUAz5:bAvJCYOOvbRPDEgXRcJBAV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_99258125853fc1184494d72162e523ab_cryptolocker
- Size
  
  32KB
- MD5
  
  99258125853fc1184494d72162e523ab
- SHA1
  
  e0118cb02ab519c490c29d3c3e1489052cbf57c6
- SHA256
  
  fc5c74f531dfeba53d4ec2192d6b2f720b34cff7213e8b60bb2e4672ebe0fd11
- SHA512
  
  873a719dfd5788ddee3125c360e7ed2f11fe67c9c72e30d1b7acc41ba1afc3c1287e1d4fa129895226100a24fdeacacf296be34abe4579c6e533f070b9bac357
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoUAz5:bAvJCYOOvbRPDEgXRcJBAV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2