fdf0628b8750a40ee37b1fdcd1030f6b6bd178608b02e2741552151df4a2f54d | Triage

Sharing

General

Target

2024-10-10_edb055fcb2fdb11e279829ca54e658af_cryptolocker
Size

44KB
Sample

241010-gvn3hazale
MD5

edb055fcb2fdb11e279829ca54e658af
SHA1

5da4a9bf182c471bc07bb3b3a069e4b8970e134a
SHA256

fdf0628b8750a40ee37b1fdcd1030f6b6bd178608b02e2741552151df4a2f54d
SHA512

a14e2b3d5605694462e2c75128b2be1164c874fb6075c7cb3487558f04bf0cb09358318b7f4f047cd1a54f0ef16add00bf1a62ace9f2d7aad362dafacbdd8dfd
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Ta:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_edb055fcb2fdb11e279829ca54e658af_cryptolocker
- Size
  
  44KB
- MD5
  
  edb055fcb2fdb11e279829ca54e658af
- SHA1
  
  5da4a9bf182c471bc07bb3b3a069e4b8970e134a
- SHA256
  
  fdf0628b8750a40ee37b1fdcd1030f6b6bd178608b02e2741552151df4a2f54d
- SHA512
  
  a14e2b3d5605694462e2c75128b2be1164c874fb6075c7cb3487558f04bf0cb09358318b7f4f047cd1a54f0ef16add00bf1a62ace9f2d7aad362dafacbdd8dfd
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Ta:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLa
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2