76fe15e8302daf36dffca8a3c674f5d198851c415146a770ac6aabe23f7a3903 | Triage

Sharing

General

Target

2024-09-19_a1558df861221a5e24b0a741a809571e_cryptolocker
Size

50KB
Sample

240919-e5lc9a1crf
MD5

a1558df861221a5e24b0a741a809571e
SHA1

d89481aa24d0119194db04323668ee888f67d7c6
SHA256

76fe15e8302daf36dffca8a3c674f5d198851c415146a770ac6aabe23f7a3903
SHA512

151a21e213be12f1971d2a11637da79b1608cfe7087778744780175522c15d76d957b00c6d897fe4ff07c3f3e11fd175f74572a66f23f3c66d68df73ae895fef
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0n0:vj+jsMQMOtEvwDpj5HczerLO04BH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_a1558df861221a5e24b0a741a809571e_cryptolocker
- Size
  
  50KB
- MD5
  
  a1558df861221a5e24b0a741a809571e
- SHA1
  
  d89481aa24d0119194db04323668ee888f67d7c6
- SHA256
  
  76fe15e8302daf36dffca8a3c674f5d198851c415146a770ac6aabe23f7a3903
- SHA512
  
  151a21e213be12f1971d2a11637da79b1608cfe7087778744780175522c15d76d957b00c6d897fe4ff07c3f3e11fd175f74572a66f23f3c66d68df73ae895fef
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0n0:vj+jsMQMOtEvwDpj5HczerLO04BH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2