f1d5475dd265c7026f2b8dfb8006383596b1fc8969e1bb42dfeacfbc1d1a92e0 | Triage

Sharing

General

Target

2024-10-12_5c520fe912cb48902c2806fcce52bbbe_cryptolocker
Size

47KB
Sample

241012-c7dp3sycje
MD5

5c520fe912cb48902c2806fcce52bbbe
SHA1

80de63d5729f936dea263741c9f648202302c7dc
SHA256

f1d5475dd265c7026f2b8dfb8006383596b1fc8969e1bb42dfeacfbc1d1a92e0
SHA512

3a011581fdcb851e5002d6aff8b0144671fdcc52bebbb8f3f74b5e2646cb4382765d2ed94d39012f7fe1c6782af5e411479803018bbd0952fa4380b3daa9753b
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJlW:6j+1NMOtEvwDpjrRraJY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_5c520fe912cb48902c2806fcce52bbbe_cryptolocker
- Size
  
  47KB
- MD5
  
  5c520fe912cb48902c2806fcce52bbbe
- SHA1
  
  80de63d5729f936dea263741c9f648202302c7dc
- SHA256
  
  f1d5475dd265c7026f2b8dfb8006383596b1fc8969e1bb42dfeacfbc1d1a92e0
- SHA512
  
  3a011581fdcb851e5002d6aff8b0144671fdcc52bebbb8f3f74b5e2646cb4382765d2ed94d39012f7fe1c6782af5e411479803018bbd0952fa4380b3daa9753b
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJlW:6j+1NMOtEvwDpjrRraJY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2