bdaa2601c158ce379ac62f350ccc94dfe97ce433a95950cc2fe3213962b3a6cc | Triage

Sharing

General

Target

2024-10-13_96a5f554b65874d52535c8fa06625123_cryptolocker
Size

43KB
Sample

241013-y83w9axakf
MD5

96a5f554b65874d52535c8fa06625123
SHA1

61cc9b9b726d9bc27e0dbc9338b223dd1afa5416
SHA256

bdaa2601c158ce379ac62f350ccc94dfe97ce433a95950cc2fe3213962b3a6cc
SHA512

ae5ebcc7dc4bc9a5179f5f9eb4cc5945739c8d2af9e979162cc2a0cbacd3566f6519af3550a9e0d8e826c6a3eb71bdb1b4df05e2b5a24b10952adc806472f782
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95/:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_96a5f554b65874d52535c8fa06625123_cryptolocker
- Size
  
  43KB
- MD5
  
  96a5f554b65874d52535c8fa06625123
- SHA1
  
  61cc9b9b726d9bc27e0dbc9338b223dd1afa5416
- SHA256
  
  bdaa2601c158ce379ac62f350ccc94dfe97ce433a95950cc2fe3213962b3a6cc
- SHA512
  
  ae5ebcc7dc4bc9a5179f5f9eb4cc5945739c8d2af9e979162cc2a0cbacd3566f6519af3550a9e0d8e826c6a3eb71bdb1b4df05e2b5a24b10952adc806472f782
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95/:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2