5490faefd1a5e383df1a5857d76dcb2336906f8a0600eef96b698b7d7d5aa8d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-10_60a214b88740c2ff80593cdf1d2239e5_cryptolocker
Size

40KB
Sample

241010-g7ysgazdjg
MD5

60a214b88740c2ff80593cdf1d2239e5
SHA1

5a3b8b65f62b7560644cf66253bcea1b94334dee
SHA256

5490faefd1a5e383df1a5857d76dcb2336906f8a0600eef96b698b7d7d5aa8d3
SHA512

d69afc604a3c6270507830c55ac972b809fffaf18d95ced16b6c86d07d8c13277ff9d814f61c7ed7f810f760ae81b89ef54ac82213a258d53fdd2c4af857212c
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+C

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_60a214b88740c2ff80593cdf1d2239e5_cryptolocker
- Size
  
  40KB
- MD5
  
  60a214b88740c2ff80593cdf1d2239e5
- SHA1
  
  5a3b8b65f62b7560644cf66253bcea1b94334dee
- SHA256
  
  5490faefd1a5e383df1a5857d76dcb2336906f8a0600eef96b698b7d7d5aa8d3
- SHA512
  
  d69afc604a3c6270507830c55ac972b809fffaf18d95ced16b6c86d07d8c13277ff9d814f61c7ed7f810f760ae81b89ef54ac82213a258d53fdd2c4af857212c
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+C
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2