b475832b8440d36c657f6f6ddf28d29e980f01db8b1a59dd47c2603068e444d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-09_5edd999b639e9591744390f6ea094381_cryptolocker
Size

45KB
Sample

241009-eh23gstdmn
MD5

5edd999b639e9591744390f6ea094381
SHA1

21ded4ca74a0cc0ebf711819d41be00028c9eecb
SHA256

b475832b8440d36c657f6f6ddf28d29e980f01db8b1a59dd47c2603068e444d5
SHA512

329c4095bcbe4e76a9c6162f40d67f34d1420b356d7b1c1a32586d6407defc4a6711f4fc92efc7eb876b10e954d80ab1fb66c57597f0db288c57e9334b3f83b8
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHum/:bCDOw9aMDooc+vAlXn/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-09_5edd999b639e9591744390f6ea094381_cryptolocker
- Size
  
  45KB
- MD5
  
  5edd999b639e9591744390f6ea094381
- SHA1
  
  21ded4ca74a0cc0ebf711819d41be00028c9eecb
- SHA256
  
  b475832b8440d36c657f6f6ddf28d29e980f01db8b1a59dd47c2603068e444d5
- SHA512
  
  329c4095bcbe4e76a9c6162f40d67f34d1420b356d7b1c1a32586d6407defc4a6711f4fc92efc7eb876b10e954d80ab1fb66c57597f0db288c57e9334b3f83b8
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHum/:bCDOw9aMDooc+vAlXn/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2