455d0194eb875ada53e396cf0ff0977483362034488b76c69665b64cf6e2f4af | Triage

Sharing

General

Target

2024-09-28_c392780d2d61f05fc25bc90a6c7ae52f_cryptolocker
Size

47KB
Sample

240928-jc813awelf
MD5

c392780d2d61f05fc25bc90a6c7ae52f
SHA1

7f3ad1651e620a232f7562de0fb1a44471b77c10
SHA256

455d0194eb875ada53e396cf0ff0977483362034488b76c69665b64cf6e2f4af
SHA512

2f050ecc5759d01c5342c16f55e90c3c5aa8f30cdc435fedc874b0db740d0864ae4e3e51c401e12f113cd05a22a6b1327d9d2b5a5d023b8f81314a8271c1a8d3
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ5:6j+1NMOtEvwDpjrRraJ5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-28_c392780d2d61f05fc25bc90a6c7ae52f_cryptolocker
- Size
  
  47KB
- MD5
  
  c392780d2d61f05fc25bc90a6c7ae52f
- SHA1
  
  7f3ad1651e620a232f7562de0fb1a44471b77c10
- SHA256
  
  455d0194eb875ada53e396cf0ff0977483362034488b76c69665b64cf6e2f4af
- SHA512
  
  2f050ecc5759d01c5342c16f55e90c3c5aa8f30cdc435fedc874b0db740d0864ae4e3e51c401e12f113cd05a22a6b1327d9d2b5a5d023b8f81314a8271c1a8d3
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ5:6j+1NMOtEvwDpjrRraJ5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2