cbf5cefca72df299861e18f773d31bc363fe7e79533284f609fd14086c3a9ddf | Triage

Sharing

General

Target

2024-09-25_56a2680264a0d3eceda93006e4b4f057_cryptolocker
Size

32KB
Sample

240925-x2x7rawdqh
MD5

56a2680264a0d3eceda93006e4b4f057
SHA1

4c5dd8bcbbc66abfa3bd11ee75a59484fb0bcfb6
SHA256

cbf5cefca72df299861e18f773d31bc363fe7e79533284f609fd14086c3a9ddf
SHA512

d4e45eb0b13dba4d9ca2a44b1946bef23f575ab6f460c159f65102dae26ec2d3b788e4bee7939009433ea4e40d82ada6f21e358e4025b93e7a9e27c838d23f1d
SSDEEP

384:bgCOR4uGLLQRcsdeQ72ngEUKK7YmE8jI0nrlwfjDU5ynuKKiqyE:bgCS4zYcgT/ENr0ryfjGquKKiZE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-25_56a2680264a0d3eceda93006e4b4f057_cryptolocker
- Size
  
  32KB
- MD5
  
  56a2680264a0d3eceda93006e4b4f057
- SHA1
  
  4c5dd8bcbbc66abfa3bd11ee75a59484fb0bcfb6
- SHA256
  
  cbf5cefca72df299861e18f773d31bc363fe7e79533284f609fd14086c3a9ddf
- SHA512
  
  d4e45eb0b13dba4d9ca2a44b1946bef23f575ab6f460c159f65102dae26ec2d3b788e4bee7939009433ea4e40d82ada6f21e358e4025b93e7a9e27c838d23f1d
- SSDEEP
  
  384:bgCOR4uGLLQRcsdeQ72ngEUKK7YmE8jI0nrlwfjDU5ynuKKiqyE:bgCS4zYcgT/ENr0ryfjGquKKiZE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2