b48506da8eb4232b22774c098c5659d889764c21d5dd283dd84befdf57e0b6d6 | Triage

Sharing

General

Target

2024-10-05_0f09b68446c43607fe27967c3cd46d83_cryptolocker
Size

72KB
Sample

241005-g5jwjazfpl
MD5

0f09b68446c43607fe27967c3cd46d83
SHA1

0b0107f88acbf4e10fc579239b91ce7c571e86be
SHA256

b48506da8eb4232b22774c098c5659d889764c21d5dd283dd84befdf57e0b6d6
SHA512

abeb5ee764c69e7207d00e5ec6c7c1d36b41485a14ea8f094a22369e954d67bde2b093ca626c642753e72121e11eaeae969b01b8073c2136aa8b2dfeef8999a2
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RI:vj+jsMQMOtEvwDpj5HZYTjipvF24g

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-05_0f09b68446c43607fe27967c3cd46d83_cryptolocker
- Size
  
  72KB
- MD5
  
  0f09b68446c43607fe27967c3cd46d83
- SHA1
  
  0b0107f88acbf4e10fc579239b91ce7c571e86be
- SHA256
  
  b48506da8eb4232b22774c098c5659d889764c21d5dd283dd84befdf57e0b6d6
- SHA512
  
  abeb5ee764c69e7207d00e5ec6c7c1d36b41485a14ea8f094a22369e954d67bde2b093ca626c642753e72121e11eaeae969b01b8073c2136aa8b2dfeef8999a2
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RI:vj+jsMQMOtEvwDpj5HZYTjipvF24g
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2