fade06e4c5a4fa351be11653cf9fbca8354a803831c154b326c9e432bc1e2ee8 | Triage

Sharing

General

Target

2024-10-10_d13267df49be2b91f4f9d350c246070e_cryptolocker
Size

50KB
Sample

241010-grfa7ayhnf
MD5

d13267df49be2b91f4f9d350c246070e
SHA1

6ff6ee7493210ea0da19759579b859f03fa1cd7c
SHA256

fade06e4c5a4fa351be11653cf9fbca8354a803831c154b326c9e432bc1e2ee8
SHA512

ff4cfccaa5d9bd50c9e00425d638842ed8c54d03b1059d705544e7281ca44d2e94c83b3229a4a12399013e53a6a9c0d0fbb79134571a1a8bce5f1ef8ce72a2fa
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITn:26Q0ElP6G+gBQMOtEvwDpjgWMl7Tn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_d13267df49be2b91f4f9d350c246070e_cryptolocker
- Size
  
  50KB
- MD5
  
  d13267df49be2b91f4f9d350c246070e
- SHA1
  
  6ff6ee7493210ea0da19759579b859f03fa1cd7c
- SHA256
  
  fade06e4c5a4fa351be11653cf9fbca8354a803831c154b326c9e432bc1e2ee8
- SHA512
  
  ff4cfccaa5d9bd50c9e00425d638842ed8c54d03b1059d705544e7281ca44d2e94c83b3229a4a12399013e53a6a9c0d0fbb79134571a1a8bce5f1ef8ce72a2fa
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITn:26Q0ElP6G+gBQMOtEvwDpjgWMl7Tn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2