d1359129eb1eb8b59f0883e128dd3c9e7f800a54a0e237c729df04d00750091b | Triage

Sharing

General

Target

2024-10-02_d997e0adc0950ce8d1fd68e9d17ca3b2_cryptolocker
Size

62KB
Sample

241002-hcxscssann
MD5

d997e0adc0950ce8d1fd68e9d17ca3b2
SHA1

b2e0dabd0cc597781598426f54b3f8820ff22f56
SHA256

d1359129eb1eb8b59f0883e128dd3c9e7f800a54a0e237c729df04d00750091b
SHA512

34dc05ab62531bf1612bd4d26d51101eccc73f25d9525d78e4736b8553eb0433a6031164b4058408d7106f20c999d76687d14ba185f38836b9e5a5d77e0d37c4
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF29C:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_d997e0adc0950ce8d1fd68e9d17ca3b2_cryptolocker
- Size
  
  62KB
- MD5
  
  d997e0adc0950ce8d1fd68e9d17ca3b2
- SHA1
  
  b2e0dabd0cc597781598426f54b3f8820ff22f56
- SHA256
  
  d1359129eb1eb8b59f0883e128dd3c9e7f800a54a0e237c729df04d00750091b
- SHA512
  
  34dc05ab62531bf1612bd4d26d51101eccc73f25d9525d78e4736b8553eb0433a6031164b4058408d7106f20c999d76687d14ba185f38836b9e5a5d77e0d37c4
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF29C:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2