519e5c61def5b1f6472cb3333997c00a778cd8d4b319dbb7ee25808ca2aec15e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-13_6a2b58278a0a3c67de9e2525e0284030_cryptolocker
Size

92KB
Sample

241013-c2w98svdrh
MD5

6a2b58278a0a3c67de9e2525e0284030
SHA1

8abc6a84642229cf18d2dd4aa3e8a22120949d06
SHA256

519e5c61def5b1f6472cb3333997c00a778cd8d4b319dbb7ee25808ca2aec15e
SHA512

2f4c1a8d223150ee7dab5819475ce8fa13d30f05e5fb8c7a37b91f1ae89e2563f42059f0da2ad1a5583edf03049f9ba0e53bcfa5f3bcb17658d1143d0cc481bf
SSDEEP

1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC8:26a+2OtEvwDpjtzH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_6a2b58278a0a3c67de9e2525e0284030_cryptolocker
- Size
  
  92KB
- MD5
  
  6a2b58278a0a3c67de9e2525e0284030
- SHA1
  
  8abc6a84642229cf18d2dd4aa3e8a22120949d06
- SHA256
  
  519e5c61def5b1f6472cb3333997c00a778cd8d4b319dbb7ee25808ca2aec15e
- SHA512
  
  2f4c1a8d223150ee7dab5819475ce8fa13d30f05e5fb8c7a37b91f1ae89e2563f42059f0da2ad1a5583edf03049f9ba0e53bcfa5f3bcb17658d1143d0cc481bf
- SSDEEP
  
  1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC8:26a+2OtEvwDpjtzH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2