53d37b3eef2041d8f6331009dc7aea2980d17c844ab1e11e637bec6042a3a3fa | Triage

Sharing

General

Target

2024-09-19_07cca1f679fced1344785e77167f4918_cryptolocker
Size

51KB
Sample

240919-j98fssygnf
MD5

07cca1f679fced1344785e77167f4918
SHA1

495647794ca30d86095321338d4934a8f5e5f2cd
SHA256

53d37b3eef2041d8f6331009dc7aea2980d17c844ab1e11e637bec6042a3a3fa
SHA512

754ff2d349bb363da0d8c0a27a575fcf68e6937715e6d9f9c96bd0f782147a9832fe6d687846b5fec307437f5341eee875a741943c6fd3e790681414ebd90b5e
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt8OWV:6j+1NMOtEvwDpjr8oxmpV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_07cca1f679fced1344785e77167f4918_cryptolocker
- Size
  
  51KB
- MD5
  
  07cca1f679fced1344785e77167f4918
- SHA1
  
  495647794ca30d86095321338d4934a8f5e5f2cd
- SHA256
  
  53d37b3eef2041d8f6331009dc7aea2980d17c844ab1e11e637bec6042a3a3fa
- SHA512
  
  754ff2d349bb363da0d8c0a27a575fcf68e6937715e6d9f9c96bd0f782147a9832fe6d687846b5fec307437f5341eee875a741943c6fd3e790681414ebd90b5e
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt8OWV:6j+1NMOtEvwDpjr8oxmpV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2