74a2aa4b591f1b7bb4ec4c94050725f240c7e312352491ede86eeaeb904c57cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-17_4064c8f82a2b561cfd8c7ab6d2dd4cd2_cryptolocker
Size

66KB
Sample

241017-x5qxva1hmd
MD5

4064c8f82a2b561cfd8c7ab6d2dd4cd2
SHA1

4f30f77381dfe3be1a567b204fa32fe043ddc117
SHA256

74a2aa4b591f1b7bb4ec4c94050725f240c7e312352491ede86eeaeb904c57cc
SHA512

acf621d7c87f7aaeb89613f821845d8ceed4f5d288600d75f3ff7217c455f3463a50b01444ff6b38d283d8e4db70b0994fe0259951c9661c20f1e4acaf9037cf
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKbW:DW60sllyWOtEvwDpjwF85L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-17_4064c8f82a2b561cfd8c7ab6d2dd4cd2_cryptolocker
- Size
  
  66KB
- MD5
  
  4064c8f82a2b561cfd8c7ab6d2dd4cd2
- SHA1
  
  4f30f77381dfe3be1a567b204fa32fe043ddc117
- SHA256
  
  74a2aa4b591f1b7bb4ec4c94050725f240c7e312352491ede86eeaeb904c57cc
- SHA512
  
  acf621d7c87f7aaeb89613f821845d8ceed4f5d288600d75f3ff7217c455f3463a50b01444ff6b38d283d8e4db70b0994fe0259951c9661c20f1e4acaf9037cf
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKbW:DW60sllyWOtEvwDpjwF85L
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2