917cf1cb8591b6fef7a0a79942a8bbc01eaedc035efdf18eeec7de6281653da4 | Triage

Sharing

General

Target

2024-09-19_5afedcdb9fa43f03670a7cc22c7b8c15_cryptolocker
Size

62KB
Sample

240919-f61d8sshmd
MD5

5afedcdb9fa43f03670a7cc22c7b8c15
SHA1

959da61a3ec3076a31f35a5bb6fd9f2a162f2cbd
SHA256

917cf1cb8591b6fef7a0a79942a8bbc01eaedc035efdf18eeec7de6281653da4
SHA512

7c83b3a54703bffb4db855465f2edc2dcc1b75d9a30c0cce1b3e2997bf17398101bb37cf3b68ec55323f57c70b44afce851f30df7eb47b04ad0a2c9360166e90
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpEt6:6j+1NMOtEvwDpjr8ox8UDEp06

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_5afedcdb9fa43f03670a7cc22c7b8c15_cryptolocker
- Size
  
  62KB
- MD5
  
  5afedcdb9fa43f03670a7cc22c7b8c15
- SHA1
  
  959da61a3ec3076a31f35a5bb6fd9f2a162f2cbd
- SHA256
  
  917cf1cb8591b6fef7a0a79942a8bbc01eaedc035efdf18eeec7de6281653da4
- SHA512
  
  7c83b3a54703bffb4db855465f2edc2dcc1b75d9a30c0cce1b3e2997bf17398101bb37cf3b68ec55323f57c70b44afce851f30df7eb47b04ad0a2c9360166e90
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpEt6:6j+1NMOtEvwDpjr8ox8UDEp06
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2