74e281060235404a116b28a04c69daa15a0994689fb082da33d99ca52c5a0b7d | Triage

Sharing

General

Target

2024-09-20_ed6024180c77e5548cb2bbb04ec99ce9_cryptolocker
Size

50KB
Sample

240920-2mlydsscjb
MD5

ed6024180c77e5548cb2bbb04ec99ce9
SHA1

af806d28d4ae1e89ffc14e290d33a77f32877e63
SHA256

74e281060235404a116b28a04c69daa15a0994689fb082da33d99ca52c5a0b7d
SHA512

82c2a1273c3d15dc72e0d68e541c52684080474c5fdfa4374751cc90d03de49ba76307f59eb074382d9f57d36241f6429f73d64c51968c297ee60e2aaa01dd67
SSDEEP

768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJgm:P6Q0ElP6G+gJQMOtEvwDpjB8WMlf4m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-20_ed6024180c77e5548cb2bbb04ec99ce9_cryptolocker
- Size
  
  50KB
- MD5
  
  ed6024180c77e5548cb2bbb04ec99ce9
- SHA1
  
  af806d28d4ae1e89ffc14e290d33a77f32877e63
- SHA256
  
  74e281060235404a116b28a04c69daa15a0994689fb082da33d99ca52c5a0b7d
- SHA512
  
  82c2a1273c3d15dc72e0d68e541c52684080474c5fdfa4374751cc90d03de49ba76307f59eb074382d9f57d36241f6429f73d64c51968c297ee60e2aaa01dd67
- SSDEEP
  
  768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJgm:P6Q0ElP6G+gJQMOtEvwDpjB8WMlf4m
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2