d25e7229a083ae2cd02a6ff2d44c0f599887c0498a9140c18da2f3cda093b528 | Triage

Sharing

General

Target

2024-10-14_ee23834950253a12162b781d89f4a3ca_cryptolocker
Size

50KB
Sample

241014-3et5ga1hma
MD5

ee23834950253a12162b781d89f4a3ca
SHA1

cb24ed869ca34179650144382e015751d3b788f6
SHA256

d25e7229a083ae2cd02a6ff2d44c0f599887c0498a9140c18da2f3cda093b528
SHA512

735d61892ad7fb7c5b0b434b06f0c6b3c75fd144bcee3a91bae738669207ea498d4f6622c47153084f18b4c25f558de753c5a0097111e48a72f1721663680fb7
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4NO2Bjjtx:xj+VGMOtEvwDpjy+TN41jH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-14_ee23834950253a12162b781d89f4a3ca_cryptolocker
- Size
  
  50KB
- MD5
  
  ee23834950253a12162b781d89f4a3ca
- SHA1
  
  cb24ed869ca34179650144382e015751d3b788f6
- SHA256
  
  d25e7229a083ae2cd02a6ff2d44c0f599887c0498a9140c18da2f3cda093b528
- SHA512
  
  735d61892ad7fb7c5b0b434b06f0c6b3c75fd144bcee3a91bae738669207ea498d4f6622c47153084f18b4c25f558de753c5a0097111e48a72f1721663680fb7
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4NO2Bjjtx:xj+VGMOtEvwDpjy+TN41jH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2