1c6fa47fbbd92ac2ba95e133d6f770baec3d8bf962660ad007f6923e4ce7f3a7 | Triage

Sharing

General

Target

2024-10-05_10436d75dd0acdf879f629aa267f7dc3_cryptolocker
Size

38KB
Sample

241005-z84n8axgrb
MD5

10436d75dd0acdf879f629aa267f7dc3
SHA1

dc6ee7621f12daaa547009c01823390fece7cc18
SHA256

1c6fa47fbbd92ac2ba95e133d6f770baec3d8bf962660ad007f6923e4ce7f3a7
SHA512

51785ade187c894e5499f66851038cccac0e77a1477dae343cb3e0e6f64420a633bcbb1326c612ae74dc0347dca6c340d2b1ea1fae1dc84f99ba6b8d94a0f636
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5co9+53i:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+Y

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-05_10436d75dd0acdf879f629aa267f7dc3_cryptolocker
- Size
  
  38KB
- MD5
  
  10436d75dd0acdf879f629aa267f7dc3
- SHA1
  
  dc6ee7621f12daaa547009c01823390fece7cc18
- SHA256
  
  1c6fa47fbbd92ac2ba95e133d6f770baec3d8bf962660ad007f6923e4ce7f3a7
- SHA512
  
  51785ade187c894e5499f66851038cccac0e77a1477dae343cb3e0e6f64420a633bcbb1326c612ae74dc0347dca6c340d2b1ea1fae1dc84f99ba6b8d94a0f636
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5co9+53i:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+Y
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2