11ec7887ecabe484f4590be63f2339d78bb75a18d3d3b1799c83df1c6101631c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-30_a151570c225221f2976de2b8d8695939_cryptolocker
Size

54KB
Sample

240930-czs5ssxfma
MD5

a151570c225221f2976de2b8d8695939
SHA1

38dce42832dbed81b0ec06a329683cfae4b24f49
SHA256

11ec7887ecabe484f4590be63f2339d78bb75a18d3d3b1799c83df1c6101631c
SHA512

18e825073b3066bb18c4347b542f65bc742fc2552ab14b410f4f09aa105bb584ac32b51929331d0a9b661fd1299ff70e8ecd8352d335ffc530fad9b02e94ab44
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPX:vj+jsMQMOtEvwDpj5HH1nw73KOFX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_a151570c225221f2976de2b8d8695939_cryptolocker
- Size
  
  54KB
- MD5
  
  a151570c225221f2976de2b8d8695939
- SHA1
  
  38dce42832dbed81b0ec06a329683cfae4b24f49
- SHA256
  
  11ec7887ecabe484f4590be63f2339d78bb75a18d3d3b1799c83df1c6101631c
- SHA512
  
  18e825073b3066bb18c4347b542f65bc742fc2552ab14b410f4f09aa105bb584ac32b51929331d0a9b661fd1299ff70e8ecd8352d335ffc530fad9b02e94ab44
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPX:vj+jsMQMOtEvwDpj5HH1nw73KOFX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2