763b6fb5c6b9374bc903c0647c5dd993660c9ad4945ee877f03a1dbb346018ae | Triage

Sharing

General

Target

2024-10-02_e8464b3315fa3955d0ff1e7967ea5a42_cryptolocker
Size

54KB
Sample

241002-jhfxgaybne
MD5

e8464b3315fa3955d0ff1e7967ea5a42
SHA1

bda9c121d1f96681818445deef91846aa32a7c7d
SHA256

763b6fb5c6b9374bc903c0647c5dd993660c9ad4945ee877f03a1dbb346018ae
SHA512

69f6987bbae7ee791ffb74e13409d635a6cafd9676ef166aa3e509be1b2b52163c30985cc1b4328e256b87c1a43ef357825a5c65c36727be30b995fa9fa55853
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPao:vj+jsMQMOtEvwDpj5HH1nw73KOFx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_e8464b3315fa3955d0ff1e7967ea5a42_cryptolocker
- Size
  
  54KB
- MD5
  
  e8464b3315fa3955d0ff1e7967ea5a42
- SHA1
  
  bda9c121d1f96681818445deef91846aa32a7c7d
- SHA256
  
  763b6fb5c6b9374bc903c0647c5dd993660c9ad4945ee877f03a1dbb346018ae
- SHA512
  
  69f6987bbae7ee791ffb74e13409d635a6cafd9676ef166aa3e509be1b2b52163c30985cc1b4328e256b87c1a43ef357825a5c65c36727be30b995fa9fa55853
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPao:vj+jsMQMOtEvwDpj5HH1nw73KOFx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2