533f12bb3fe9b2d641438bd3d4690bb4fb7fb67d7c719b3b412d560f6de8f725 | Triage

Sharing

General

Target

2024-10-01_803652be5cdc3cd6788a7f157f25d939_cryptolocker
Size

46KB
Sample

241001-xn7h9sygnc
MD5

803652be5cdc3cd6788a7f157f25d939
SHA1

403fae3cae0033f7c55e1a348649fb603408f3a2
SHA256

533f12bb3fe9b2d641438bd3d4690bb4fb7fb67d7c719b3b412d560f6de8f725
SHA512

86ef10e74c6497a0bad83c2fc79d577ddd11753b62b1b2c53cc4cb51d344d05cb37fb63f059c974a85ebec5d09bdbb3fe60c7c5493f4589b9d1af0a32fed7ce0
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLtldedHG:xj+VGMOtEvwDpjk/elG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-01_803652be5cdc3cd6788a7f157f25d939_cryptolocker
- Size
  
  46KB
- MD5
  
  803652be5cdc3cd6788a7f157f25d939
- SHA1
  
  403fae3cae0033f7c55e1a348649fb603408f3a2
- SHA256
  
  533f12bb3fe9b2d641438bd3d4690bb4fb7fb67d7c719b3b412d560f6de8f725
- SHA512
  
  86ef10e74c6497a0bad83c2fc79d577ddd11753b62b1b2c53cc4cb51d344d05cb37fb63f059c974a85ebec5d09bdbb3fe60c7c5493f4589b9d1af0a32fed7ce0
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLtldedHG:xj+VGMOtEvwDpjk/elG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2