e92c84210295585d1408c86693f1424ede5026292b61f4cd3c6b3da293828f8c | Triage

Sharing

General

Target

2024-10-12_92890a54d0da70049c2ec1cb38ec8686_cryptolocker
Size

73KB
Sample

241012-dgcwjaygqe
MD5

92890a54d0da70049c2ec1cb38ec8686
SHA1

4ae1c5c36f56f32696c0883349c9fac8f1be3054
SHA256

e92c84210295585d1408c86693f1424ede5026292b61f4cd3c6b3da293828f8c
SHA512

00b80be2655a1dd863cd24cbb19eae78953094926872f596b74b239ebaf6ccb383187df20e11fe738233b610cb6df2b466461a1954f718615e2b859e0bd7d922
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Re:vj+jsMQMOtEvwDpj5HZYTjipvF24nW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_92890a54d0da70049c2ec1cb38ec8686_cryptolocker
- Size
  
  73KB
- MD5
  
  92890a54d0da70049c2ec1cb38ec8686
- SHA1
  
  4ae1c5c36f56f32696c0883349c9fac8f1be3054
- SHA256
  
  e92c84210295585d1408c86693f1424ede5026292b61f4cd3c6b3da293828f8c
- SHA512
  
  00b80be2655a1dd863cd24cbb19eae78953094926872f596b74b239ebaf6ccb383187df20e11fe738233b610cb6df2b466461a1954f718615e2b859e0bd7d922
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Re:vj+jsMQMOtEvwDpj5HZYTjipvF24nW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2