52bcad3a1004b2da936a7fdd0510dbac9d690e966c59a970c289947a842cc64d | Triage

Sharing

General

Target

2024-10-17_dda49ef52298b218491e73b679518fb5_cryptolocker
Size

75KB
Sample

241017-s17mkswgln
MD5

dda49ef52298b218491e73b679518fb5
SHA1

90b57b99baedc66039ca813d1dab1fde4b444f2f
SHA256

52bcad3a1004b2da936a7fdd0510dbac9d690e966c59a970c289947a842cc64d
SHA512

4389e01d9c486b98ec34bb8b5a92a32a5a1d8f47ae55b5ad8d7e3e83cab9f0554e3c1b1fdb271b2f1b38b48d4c2bd1018301fb2b54ac6d8464000ad35c33f25f
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufB:vCjsIOtEvwDpj5H9YvQd2l

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-17_dda49ef52298b218491e73b679518fb5_cryptolocker
- Size
  
  75KB
- MD5
  
  dda49ef52298b218491e73b679518fb5
- SHA1
  
  90b57b99baedc66039ca813d1dab1fde4b444f2f
- SHA256
  
  52bcad3a1004b2da936a7fdd0510dbac9d690e966c59a970c289947a842cc64d
- SHA512
  
  4389e01d9c486b98ec34bb8b5a92a32a5a1d8f47ae55b5ad8d7e3e83cab9f0554e3c1b1fdb271b2f1b38b48d4c2bd1018301fb2b54ac6d8464000ad35c33f25f
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufB:vCjsIOtEvwDpj5H9YvQd2l
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2