0bdcc0090d1e910408d9d06ffb0e76781f277b86798834372992dc444424a8a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-13_5563d478f0d320954626b83ac6682fdc_cryptolocker
Size

57KB
Sample

241013-c1rclavdme
MD5

5563d478f0d320954626b83ac6682fdc
SHA1

06be47e745bf659826932a0633caaae4bbd64084
SHA256

0bdcc0090d1e910408d9d06ffb0e76781f277b86798834372992dc444424a8a6
SHA512

159b92786c893e9f9648ce880fead75b3aaaa2714df31f456f2feed5e40351a7d6e20fe4cb500d6c3fd708a4fd5818d74bf37baa4c93a7e494619d9ab6c9ee10
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/eUJ:6j+1NMOtEvwDpjr8oxExe2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_5563d478f0d320954626b83ac6682fdc_cryptolocker
- Size
  
  57KB
- MD5
  
  5563d478f0d320954626b83ac6682fdc
- SHA1
  
  06be47e745bf659826932a0633caaae4bbd64084
- SHA256
  
  0bdcc0090d1e910408d9d06ffb0e76781f277b86798834372992dc444424a8a6
- SHA512
  
  159b92786c893e9f9648ce880fead75b3aaaa2714df31f456f2feed5e40351a7d6e20fe4cb500d6c3fd708a4fd5818d74bf37baa4c93a7e494619d9ab6c9ee10
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/eUJ:6j+1NMOtEvwDpjr8oxExe2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2