2e3bd5096ba055cb4e79e9ca60497c65e5253e045bb8c2ac7142fd26af8f1b8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-12_5b85d12208be51b81b756abdc4311fa2_cryptolocker
Size

46KB
Sample

241012-gactqs1alm
MD5

5b85d12208be51b81b756abdc4311fa2
SHA1

9b06688954c5a00bc549bf1f65b079271a8fec4a
SHA256

2e3bd5096ba055cb4e79e9ca60497c65e5253e045bb8c2ac7142fd26af8f1b8e
SHA512

35b44f8bb6d9edf4d29b1aa050bb1965a892f85956ee98365a068ab699c049cf931ac59a71b294958f16f81cd8bc2386af582269e7120dd159aa075b7f2a8e8a
SSDEEP

768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zW:bF/y2lFizbR9XwzW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_5b85d12208be51b81b756abdc4311fa2_cryptolocker
- Size
  
  46KB
- MD5
  
  5b85d12208be51b81b756abdc4311fa2
- SHA1
  
  9b06688954c5a00bc549bf1f65b079271a8fec4a
- SHA256
  
  2e3bd5096ba055cb4e79e9ca60497c65e5253e045bb8c2ac7142fd26af8f1b8e
- SHA512
  
  35b44f8bb6d9edf4d29b1aa050bb1965a892f85956ee98365a068ab699c049cf931ac59a71b294958f16f81cd8bc2386af582269e7120dd159aa075b7f2a8e8a
- SSDEEP
  
  768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zW:bF/y2lFizbR9XwzW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2