c2768d2bafd6a8b2669dd46303abed7277acde86fab99e49b3dd8978c87f13d0 | Triage

Sharing

General

Target

2024-10-10_ceb02bc1aa58dfdddf06d792a118a98f_cryptolocker
Size

45KB
Sample

241010-t7bzxs1cmq
MD5

ceb02bc1aa58dfdddf06d792a118a98f
SHA1

6a1105808b9db31c40517c094f9176ae4065604a
SHA256

c2768d2bafd6a8b2669dd46303abed7277acde86fab99e49b3dd8978c87f13d0
SHA512

c3aa74905cc3382a69ee309b31cdaf72465bdb884e0c814a48f45397af87372c52cd71403e0442d4d37dbaa72a810a95678722ca13e92cb46ae6bc318a22ffeb
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRv:6j+1NMOtEvwDpjr8D

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_ceb02bc1aa58dfdddf06d792a118a98f_cryptolocker
- Size
  
  45KB
- MD5
  
  ceb02bc1aa58dfdddf06d792a118a98f
- SHA1
  
  6a1105808b9db31c40517c094f9176ae4065604a
- SHA256
  
  c2768d2bafd6a8b2669dd46303abed7277acde86fab99e49b3dd8978c87f13d0
- SHA512
  
  c3aa74905cc3382a69ee309b31cdaf72465bdb884e0c814a48f45397af87372c52cd71403e0442d4d37dbaa72a810a95678722ca13e92cb46ae6bc318a22ffeb
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRv:6j+1NMOtEvwDpjr8D
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2