2579948b1bb3e5808a052373ffd1aa26aa3c8d82f98b9fd940d57c40c4e05cd9 | Triage

Sharing

General

Target

2024-10-02_6f385429b17473c9e8dde146f5aab62d_cryptolocker
Size

45KB
Sample

241002-dy4etaydka
MD5

6f385429b17473c9e8dde146f5aab62d
SHA1

af9479f00b65d598074e52ce7cb8b29ee677a1ef
SHA256

2579948b1bb3e5808a052373ffd1aa26aa3c8d82f98b9fd940d57c40c4e05cd9
SHA512

06f03d3c525c07531ff083d0c4b9688dd92dcb3ee0e6d83cd390b7546bcf93e9faa40c2e9a6e904dfa9d6c52db9432531edbfd896336a14c42726c0315ce1516
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hy7:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_6f385429b17473c9e8dde146f5aab62d_cryptolocker
- Size
  
  45KB
- MD5
  
  6f385429b17473c9e8dde146f5aab62d
- SHA1
  
  af9479f00b65d598074e52ce7cb8b29ee677a1ef
- SHA256
  
  2579948b1bb3e5808a052373ffd1aa26aa3c8d82f98b9fd940d57c40c4e05cd9
- SHA512
  
  06f03d3c525c07531ff083d0c4b9688dd92dcb3ee0e6d83cd390b7546bcf93e9faa40c2e9a6e904dfa9d6c52db9432531edbfd896336a14c42726c0315ce1516
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9Hy7:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2