ea852422efae21382de13367c735ecf0c45243349a46efc66bd27c19c26f938d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-05_2f632e630d7e4980f40e82351b7dd6e9_cryptolocker
Size

46KB
Sample

241005-1a4f8stbjk
MD5

2f632e630d7e4980f40e82351b7dd6e9
SHA1

4b588d4bbf79522e59a78d01cede259c0284d835
SHA256

ea852422efae21382de13367c735ecf0c45243349a46efc66bd27c19c26f938d
SHA512

8ed8fcef45773c1b0727ad8fac2765e385bc9226a1e5bc1738dfbeb416a21f1e797382d74a4dd71d5b2d8de58a8723a7c37764c7eacc615c23a83aa7789ef830
SSDEEP

384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/W/rJ+xLrs7cwcx4MWlNVp:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-05_2f632e630d7e4980f40e82351b7dd6e9_cryptolocker
- Size
  
  46KB
- MD5
  
  2f632e630d7e4980f40e82351b7dd6e9
- SHA1
  
  4b588d4bbf79522e59a78d01cede259c0284d835
- SHA256
  
  ea852422efae21382de13367c735ecf0c45243349a46efc66bd27c19c26f938d
- SHA512
  
  8ed8fcef45773c1b0727ad8fac2765e385bc9226a1e5bc1738dfbeb416a21f1e797382d74a4dd71d5b2d8de58a8723a7c37764c7eacc615c23a83aa7789ef830
- SSDEEP
  
  384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/W/rJ+xLrs7cwcx4MWlNVp:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2