ad2d6b332b16489c1c7af5f405628a4e53ec5e1ae3d2e4babf98bebacb97cdc1 | Triage

Sharing

General

Target

2024-10-04_de299aa40c8c35e6f78ed7bc6d962570_cryptolocker
Size

45KB
Sample

241004-t6t44svdkl
MD5

de299aa40c8c35e6f78ed7bc6d962570
SHA1

04a0eeb8100458e6b7f2541c60c519a7d4092544
SHA256

ad2d6b332b16489c1c7af5f405628a4e53ec5e1ae3d2e4babf98bebacb97cdc1
SHA512

69ba10dfcaa2ce8502cb216dd4df1063477f6ec3b1523de34a3dd75deeca6879fa224d15af107556d3a96089cefc54f5716664b9db7e55cf9d1fc643f9f8e46d
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WQ2:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-04_de299aa40c8c35e6f78ed7bc6d962570_cryptolocker
- Size
  
  45KB
- MD5
  
  de299aa40c8c35e6f78ed7bc6d962570
- SHA1
  
  04a0eeb8100458e6b7f2541c60c519a7d4092544
- SHA256
  
  ad2d6b332b16489c1c7af5f405628a4e53ec5e1ae3d2e4babf98bebacb97cdc1
- SHA512
  
  69ba10dfcaa2ce8502cb216dd4df1063477f6ec3b1523de34a3dd75deeca6879fa224d15af107556d3a96089cefc54f5716664b9db7e55cf9d1fc643f9f8e46d
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WQ2:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFM
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2