f7b57a8277abf5e4fc69638bc8f7d4bbbb00591757626c29c26c7eef4a23f40e | Triage

Sharing

General

Target

2024-10-13_17565aa438ca33a8efba44eceef4cb32_cryptolocker
Size

75KB
Sample

241013-f38w7svhkm
MD5

17565aa438ca33a8efba44eceef4cb32
SHA1

e7112868d1e2b6f13d83824e767f9ac8dc3718b9
SHA256

f7b57a8277abf5e4fc69638bc8f7d4bbbb00591757626c29c26c7eef4a23f40e
SHA512

b0b810f87e556c68c93401819b3d427961084a3e699e393a67d74ba2c117a0ec0d5fafa122f20639be92cbc54d9b945e666028cb48769859bbcb8d99b34bdd32
SSDEEP

768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMsMb:u6QFElP6n+gWMOtEvwDpjJGYQbI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_17565aa438ca33a8efba44eceef4cb32_cryptolocker
- Size
  
  75KB
- MD5
  
  17565aa438ca33a8efba44eceef4cb32
- SHA1
  
  e7112868d1e2b6f13d83824e767f9ac8dc3718b9
- SHA256
  
  f7b57a8277abf5e4fc69638bc8f7d4bbbb00591757626c29c26c7eef4a23f40e
- SHA512
  
  b0b810f87e556c68c93401819b3d427961084a3e699e393a67d74ba2c117a0ec0d5fafa122f20639be92cbc54d9b945e666028cb48769859bbcb8d99b34bdd32
- SSDEEP
  
  768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMsMb:u6QFElP6n+gWMOtEvwDpjJGYQbI
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2