2e3dc43e7fc58458f7930f1ec730a4af9a2541b406ebfa437c3fe889a1dea559 | Triage

Sharing

General

Target

2024-09-19_54e67b9d8aa0f8899581239fd53b9e3a_cryptolocker
Size

54KB
Sample

240919-g61knsvfqm
MD5

54e67b9d8aa0f8899581239fd53b9e3a
SHA1

4cac7ee67cbf518efac8107a869523df82a12e9e
SHA256

2e3dc43e7fc58458f7930f1ec730a4af9a2541b406ebfa437c3fe889a1dea559
SHA512

f96147c5811a5ceb485e38c191d58eb8f13e45ac34f7b6825140231d5ff9a6e272fbcb616333b5555371e1286088d04db1ede52e180acbf0573fad0f44acfedd
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIN:X6QFElP6n+gJBMOtEvwDpjBtExml6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_54e67b9d8aa0f8899581239fd53b9e3a_cryptolocker
- Size
  
  54KB
- MD5
  
  54e67b9d8aa0f8899581239fd53b9e3a
- SHA1
  
  4cac7ee67cbf518efac8107a869523df82a12e9e
- SHA256
  
  2e3dc43e7fc58458f7930f1ec730a4af9a2541b406ebfa437c3fe889a1dea559
- SHA512
  
  f96147c5811a5ceb485e38c191d58eb8f13e45ac34f7b6825140231d5ff9a6e272fbcb616333b5555371e1286088d04db1ede52e180acbf0573fad0f44acfedd
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIN:X6QFElP6n+gJBMOtEvwDpjBtExml6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2