e807084ce09dfc518da25d4ed003b55e12760d3dded0fdd0561689e977a913f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-04_5393ca2334bf28bb2ee0cd3267d1c90b_cryptolocker
Size

49KB
Sample

241004-f41l8a1bkf
MD5

5393ca2334bf28bb2ee0cd3267d1c90b
SHA1

c47ed767807711027311bd4a7996bba4d01e3bbc
SHA256

e807084ce09dfc518da25d4ed003b55e12760d3dded0fdd0561689e977a913f8
SHA512

421ca73c53e49867f1be98279f9c580caf9f94db4041eca06d635daa95da0100ece679762fcee45e3040fde84a93f1a55bba0821c2d97d35e2db75029025387c
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITW:26Q0ElP6G+gBQMOtEvwDpjgWMl7TW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-04_5393ca2334bf28bb2ee0cd3267d1c90b_cryptolocker
- Size
  
  49KB
- MD5
  
  5393ca2334bf28bb2ee0cd3267d1c90b
- SHA1
  
  c47ed767807711027311bd4a7996bba4d01e3bbc
- SHA256
  
  e807084ce09dfc518da25d4ed003b55e12760d3dded0fdd0561689e977a913f8
- SHA512
  
  421ca73c53e49867f1be98279f9c580caf9f94db4041eca06d635daa95da0100ece679762fcee45e3040fde84a93f1a55bba0821c2d97d35e2db75029025387c
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITW:26Q0ElP6G+gBQMOtEvwDpjgWMl7TW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2