c1f4f6a4db08880bf4c56ab695edfd131e9fc861bcdc797cb415e5a3b338eab5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-01_8e33fb5573d4153b696be787fed2fead_cryptolocker
Size

73KB
Sample

241001-yg969a1cpd
MD5

8e33fb5573d4153b696be787fed2fead
SHA1

fae187e5d9c2e742cf51a28c842b2ed1a0f77433
SHA256

c1f4f6a4db08880bf4c56ab695edfd131e9fc861bcdc797cb415e5a3b338eab5
SHA512

54156381c02cd2be2efb46fd7701978e1005f606ba539273a043fabfc6197811d6218800feff37c248ca8430c1029098ff95e199f354abe88d6f994f81e8395d
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5y:DW60sllyWOtEvwDpjwF85X

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-01_8e33fb5573d4153b696be787fed2fead_cryptolocker
- Size
  
  73KB
- MD5
  
  8e33fb5573d4153b696be787fed2fead
- SHA1
  
  fae187e5d9c2e742cf51a28c842b2ed1a0f77433
- SHA256
  
  c1f4f6a4db08880bf4c56ab695edfd131e9fc861bcdc797cb415e5a3b338eab5
- SHA512
  
  54156381c02cd2be2efb46fd7701978e1005f606ba539273a043fabfc6197811d6218800feff37c248ca8430c1029098ff95e199f354abe88d6f994f81e8395d
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5y:DW60sllyWOtEvwDpjwF85X
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2