1d608e9df8ad190faea52bac50a6911304c1277007108fe06bc493a36022030d | Triage

Sharing

General

Target

2024-10-13_170b74c7f9c3df4e6ca956ddd8582ff5_cryptolocker
Size

40KB
Sample

241013-bgzn7a1dre
MD5

170b74c7f9c3df4e6ca956ddd8582ff5
SHA1

9c2707c233543a9984b88788887f7298cd816342
SHA256

1d608e9df8ad190faea52bac50a6911304c1277007108fe06bc493a36022030d
SHA512

fa24159fb57a41d2b74ad32835364ff521292a578d3367508f75edd2df6c7f69857b98d208d55fb79a02a1c24d042e11141290a855d6643ff4f4a548417d9181
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qJ:fT+hsMQMOtEvwDpjoIHK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_170b74c7f9c3df4e6ca956ddd8582ff5_cryptolocker
- Size
  
  40KB
- MD5
  
  170b74c7f9c3df4e6ca956ddd8582ff5
- SHA1
  
  9c2707c233543a9984b88788887f7298cd816342
- SHA256
  
  1d608e9df8ad190faea52bac50a6911304c1277007108fe06bc493a36022030d
- SHA512
  
  fa24159fb57a41d2b74ad32835364ff521292a578d3367508f75edd2df6c7f69857b98d208d55fb79a02a1c24d042e11141290a855d6643ff4f4a548417d9181
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qJ:fT+hsMQMOtEvwDpjoIHK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2