b711f8556bfbf5dcce9aabec7c1bc9a236c3064134b66bb9ce8509dd7763388a | Triage

Sharing

General

Target

2024-10-09_581331e4c561ee5820abb2bd8bea892e_cryptolocker
Size

74KB
Sample

241009-e89v1sxfql
MD5

581331e4c561ee5820abb2bd8bea892e
SHA1

39d0668b20665ce8489fcb4200d46c0478f7e611
SHA256

b711f8556bfbf5dcce9aabec7c1bc9a236c3064134b66bb9ce8509dd7763388a
SHA512

73f55951723bb665258c62f48144f157e3571c18b039c15ad646b5004a29e3ce77f3a26408b6c44189ab9e0dd203189c8d737af6a61e3d1690139a3d30f0f98b
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zk:9Uj+AIMOtEvwDpjLizbR9Xwzk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-09_581331e4c561ee5820abb2bd8bea892e_cryptolocker
- Size
  
  74KB
- MD5
  
  581331e4c561ee5820abb2bd8bea892e
- SHA1
  
  39d0668b20665ce8489fcb4200d46c0478f7e611
- SHA256
  
  b711f8556bfbf5dcce9aabec7c1bc9a236c3064134b66bb9ce8509dd7763388a
- SHA512
  
  73f55951723bb665258c62f48144f157e3571c18b039c15ad646b5004a29e3ce77f3a26408b6c44189ab9e0dd203189c8d737af6a61e3d1690139a3d30f0f98b
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zk:9Uj+AIMOtEvwDpjLizbR9Xwzk
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2