c4cc198380137b816c742f4b25d77dfd4da81c27c1a4ee3d5aae7ece6a225ae0 | Triage

Sharing

General

Target

2024-10-05_862dd068f734833e0dc0a7686d3d52fd_cryptolocker
Size

53KB
Sample

241005-ke65xszcka
MD5

862dd068f734833e0dc0a7686d3d52fd
SHA1

8aaae1607627c7fd029c4ccdb2c96a2d85523358
SHA256

c4cc198380137b816c742f4b25d77dfd4da81c27c1a4ee3d5aae7ece6a225ae0
SHA512

595a2e713382080843e777719a716ad03aeb2406f6ce2a478ee153209e1b224ed8ef5dbf71543ede211f31eb2fa722af36378d7353fd60ddf671a34d6efc1121
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0ntbcl:vj+jsMQMOtEvwDpj5HczerLO04BGcl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-05_862dd068f734833e0dc0a7686d3d52fd_cryptolocker
- Size
  
  53KB
- MD5
  
  862dd068f734833e0dc0a7686d3d52fd
- SHA1
  
  8aaae1607627c7fd029c4ccdb2c96a2d85523358
- SHA256
  
  c4cc198380137b816c742f4b25d77dfd4da81c27c1a4ee3d5aae7ece6a225ae0
- SHA512
  
  595a2e713382080843e777719a716ad03aeb2406f6ce2a478ee153209e1b224ed8ef5dbf71543ede211f31eb2fa722af36378d7353fd60ddf671a34d6efc1121
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0ntbcl:vj+jsMQMOtEvwDpj5HczerLO04BGcl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2