5e6e5c7baf744b9efe9453aee48ee651e76ca12ab465064dd62728b78963e5c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-06_2ff501ae2f3b7a06761b7cbac8726a13_cryptolocker
Size

53KB
Sample

241006-cy3b3svbpg
MD5

2ff501ae2f3b7a06761b7cbac8726a13
SHA1

66d2190b7ab92543ecaac870f9b355ef280b7069
SHA256

5e6e5c7baf744b9efe9453aee48ee651e76ca12ab465064dd62728b78963e5c7
SHA512

5b95d17b831cb64f312b55ec4c27c4dafc1da27aa21732540ee9f522c4ed0e4b76ceb34e8ffe0c07119c874ea5b2cbd0acaedc8c5d8b959aedc0c25b5d6849ee
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvP0l:vj+jsMQMOtEvwDpj5HH1nw73KOFy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-06_2ff501ae2f3b7a06761b7cbac8726a13_cryptolocker
- Size
  
  53KB
- MD5
  
  2ff501ae2f3b7a06761b7cbac8726a13
- SHA1
  
  66d2190b7ab92543ecaac870f9b355ef280b7069
- SHA256
  
  5e6e5c7baf744b9efe9453aee48ee651e76ca12ab465064dd62728b78963e5c7
- SHA512
  
  5b95d17b831cb64f312b55ec4c27c4dafc1da27aa21732540ee9f522c4ed0e4b76ceb34e8ffe0c07119c874ea5b2cbd0acaedc8c5d8b959aedc0c25b5d6849ee
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvP0l:vj+jsMQMOtEvwDpj5HH1nw73KOFy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2