ad5e86209f18954855bcc0c974ef78652d20e888dae84f1600d6a84ad6649bd4 | Triage

Sharing

General

Target

2024-10-13_ec93f24fb18946a2310d5c8c459304de_cryptolocker
Size

46KB
Sample

241013-kj853ssapn
MD5

ec93f24fb18946a2310d5c8c459304de
SHA1

6c9558e6a7c88ab2ff71fbdcf1cf948ca7c1bbf3
SHA256

ad5e86209f18954855bcc0c974ef78652d20e888dae84f1600d6a84ad6649bd4
SHA512

0518e089c20d0f678c607fb5178670da45702783cfeb4c69ebf47e1d504797e9cc15fbb2e405f0c2d984716d477efe156ba5e0c62d2515a3851cd68de250fe7b
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJIND:6j+1NMOtEvwDpjrRraJs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_ec93f24fb18946a2310d5c8c459304de_cryptolocker
- Size
  
  46KB
- MD5
  
  ec93f24fb18946a2310d5c8c459304de
- SHA1
  
  6c9558e6a7c88ab2ff71fbdcf1cf948ca7c1bbf3
- SHA256
  
  ad5e86209f18954855bcc0c974ef78652d20e888dae84f1600d6a84ad6649bd4
- SHA512
  
  0518e089c20d0f678c607fb5178670da45702783cfeb4c69ebf47e1d504797e9cc15fbb2e405f0c2d984716d477efe156ba5e0c62d2515a3851cd68de250fe7b
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJIND:6j+1NMOtEvwDpjrRraJs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2