5782a8c4ea58074593caf8db167ee6b77e4e51bf9dc45c9761b44d7338ff2856 | Triage

Sharing

General

Target

2024-09-19_c833ea2de178f622af682baddfba5979_cryptolocker
Size

73KB
Sample

240919-f9expstcml
MD5

c833ea2de178f622af682baddfba5979
SHA1

971d44eb06f7eef9dbc9ba2a2fd2c8dbf2633a2c
SHA256

5782a8c4ea58074593caf8db167ee6b77e4e51bf9dc45c9761b44d7338ff2856
SHA512

db0674ede21e1e2c2228846a74a652a6b24f73b5c7face5b3dbabb59c52c68f326515c3e5271a9eb103bf63420b6a4a00a62aa6d55e3c223635b4c49b61bcc87
SSDEEP

768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMs0:u6QFElP6n+gWMOtEvwDpjJGYQb0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_c833ea2de178f622af682baddfba5979_cryptolocker
- Size
  
  73KB
- MD5
  
  c833ea2de178f622af682baddfba5979
- SHA1
  
  971d44eb06f7eef9dbc9ba2a2fd2c8dbf2633a2c
- SHA256
  
  5782a8c4ea58074593caf8db167ee6b77e4e51bf9dc45c9761b44d7338ff2856
- SHA512
  
  db0674ede21e1e2c2228846a74a652a6b24f73b5c7face5b3dbabb59c52c68f326515c3e5271a9eb103bf63420b6a4a00a62aa6d55e3c223635b4c49b61bcc87
- SSDEEP
  
  768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMs0:u6QFElP6n+gWMOtEvwDpjJGYQb0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2