5e52aa554e6051e8e5f7eee8ae334739ff7a0149b8e403f4201cb75b5eac5390 | Triage

Sharing

General

Target

2024-10-17_5f64e7b067686aad720a5c8c04c8035b_cryptolocker
Size

56KB
Sample

241017-3flvgsvhrl
MD5

5f64e7b067686aad720a5c8c04c8035b
SHA1

c5dfad1b4f9d20835d15106b13ad46258d022727
SHA256

5e52aa554e6051e8e5f7eee8ae334739ff7a0149b8e403f4201cb75b5eac5390
SHA512

428246271b6d8228354ac924cc29e6ef0b32ff143f186bab491295dbb3494340b5acb6959c20b5b86b5468734d2e2d69461eb61ce507ba16645987ce417d44cd
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Gowfj6d:xj+VGMOtEvwDpjubEgG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-17_5f64e7b067686aad720a5c8c04c8035b_cryptolocker
- Size
  
  56KB
- MD5
  
  5f64e7b067686aad720a5c8c04c8035b
- SHA1
  
  c5dfad1b4f9d20835d15106b13ad46258d022727
- SHA256
  
  5e52aa554e6051e8e5f7eee8ae334739ff7a0149b8e403f4201cb75b5eac5390
- SHA512
  
  428246271b6d8228354ac924cc29e6ef0b32ff143f186bab491295dbb3494340b5acb6959c20b5b86b5468734d2e2d69461eb61ce507ba16645987ce417d44cd
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Gowfj6d:xj+VGMOtEvwDpjubEgG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2