d8dc772717901ed3c6062715a27a69bc9224f836e702b7eca224316b1423d1ba | Triage

Sharing

General

Target

2024-10-12_17ff3fbefdf74bb37db7cdb24b05138d_cryptolocker
Size

36KB
Sample

241012-d1hk5a1arg
MD5

17ff3fbefdf74bb37db7cdb24b05138d
SHA1

445f3e91044a1809c93b76d0f7b45ce0508c459c
SHA256

d8dc772717901ed3c6062715a27a69bc9224f836e702b7eca224316b1423d1ba
SHA512

a4633b322d49aa0ad1c56ed9efeb9539d52e86de75b6a4d7ae0045f4855779ed4aad1aac853883e17e92a4b5dc8c1243888a2c2649f9ba704b32ca7dbb405d0f
SSDEEP

768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9RzF:i5nkFGMOtEvwDpjR+J

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_17ff3fbefdf74bb37db7cdb24b05138d_cryptolocker
- Size
  
  36KB
- MD5
  
  17ff3fbefdf74bb37db7cdb24b05138d
- SHA1
  
  445f3e91044a1809c93b76d0f7b45ce0508c459c
- SHA256
  
  d8dc772717901ed3c6062715a27a69bc9224f836e702b7eca224316b1423d1ba
- SHA512
  
  a4633b322d49aa0ad1c56ed9efeb9539d52e86de75b6a4d7ae0045f4855779ed4aad1aac853883e17e92a4b5dc8c1243888a2c2649f9ba704b32ca7dbb405d0f
- SSDEEP
  
  768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9RzF:i5nkFGMOtEvwDpjR+J
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2