2e83d7253c3ad3463622e946bd2b5dc28e07c7fdd19603c238c67c38080012ef | Triage

Sharing

General

Target

2024-10-01_de1eaffef08d9ca287a4529f1a0a6198_cryptolocker
Size

45KB
Sample

241001-er5vqszdmn
MD5

de1eaffef08d9ca287a4529f1a0a6198
SHA1

f467599f5524740df919013ce76b3a03cb3f4e24
SHA256

2e83d7253c3ad3463622e946bd2b5dc28e07c7fdd19603c238c67c38080012ef
SHA512

717f68288127df16b2f605029147d358e938df45128f2e2b977132409d408441c96f1e9a4840a3f97f079da58b26443e4fb4cce528afafc43fb7944c044635f1
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPJ:P6QFElP6k+MRQMOtEvwDpjBQpVXg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-01_de1eaffef08d9ca287a4529f1a0a6198_cryptolocker
- Size
  
  45KB
- MD5
  
  de1eaffef08d9ca287a4529f1a0a6198
- SHA1
  
  f467599f5524740df919013ce76b3a03cb3f4e24
- SHA256
  
  2e83d7253c3ad3463622e946bd2b5dc28e07c7fdd19603c238c67c38080012ef
- SHA512
  
  717f68288127df16b2f605029147d358e938df45128f2e2b977132409d408441c96f1e9a4840a3f97f079da58b26443e4fb4cce528afafc43fb7944c044635f1
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPJ:P6QFElP6k+MRQMOtEvwDpjBQpVXg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2