5706f5da79b85a558632b529f092f84019b070288929bb835cbfffe8b93dd264 | Triage

Sharing

General

Target

2024-10-13_78c4db63eb731fc2b19266df2b982da9_cryptolocker
Size

69KB
Sample

241013-cwgbtsydnr
MD5

78c4db63eb731fc2b19266df2b982da9
SHA1

165788f34f2f03d3da53f59b73a3951e2293c1b4
SHA256

5706f5da79b85a558632b529f092f84019b070288929bb835cbfffe8b93dd264
SHA512

8557afe3d0f222cf7300a4e9081e9dc1e226926a0762262c680b32dc4b8a34f98eba2aefe494faa92752db76f565ee76fc8d9d3fcbe279a42472114e9ddd221b
SSDEEP

768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ9BL7r:gUj+AIMOtEvwDpjNbx7r

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_78c4db63eb731fc2b19266df2b982da9_cryptolocker
- Size
  
  69KB
- MD5
  
  78c4db63eb731fc2b19266df2b982da9
- SHA1
  
  165788f34f2f03d3da53f59b73a3951e2293c1b4
- SHA256
  
  5706f5da79b85a558632b529f092f84019b070288929bb835cbfffe8b93dd264
- SHA512
  
  8557afe3d0f222cf7300a4e9081e9dc1e226926a0762262c680b32dc4b8a34f98eba2aefe494faa92752db76f565ee76fc8d9d3fcbe279a42472114e9ddd221b
- SSDEEP
  
  768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ9BL7r:gUj+AIMOtEvwDpjNbx7r
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2