669cebb643f0b003ad4d2c9646f7e3b7d977dec3f7e775b51f27e16b20c75ab8 | Triage

Sharing

General

Target

2024-10-18_7e91da66fdd0d67239af9edc144f8237_cryptolocker
Size

35KB
Sample

241018-c35m1avejr
MD5

7e91da66fdd0d67239af9edc144f8237
SHA1

8e54f314161bb24e679fc797f42b5b32d6b40354
SHA256

669cebb643f0b003ad4d2c9646f7e3b7d977dec3f7e775b51f27e16b20c75ab8
SHA512

779196662725de24985d20629577f924a4aae3cf88131f54d14cc14b9dcc7aa0b566869073557f18a40be986af9830501b1a4f872903d6cd9f717fbe0d971c72
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SLY:bG74zYcgT/Ekd0ryfjkbCLY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_7e91da66fdd0d67239af9edc144f8237_cryptolocker
- Size
  
  35KB
- MD5
  
  7e91da66fdd0d67239af9edc144f8237
- SHA1
  
  8e54f314161bb24e679fc797f42b5b32d6b40354
- SHA256
  
  669cebb643f0b003ad4d2c9646f7e3b7d977dec3f7e775b51f27e16b20c75ab8
- SHA512
  
  779196662725de24985d20629577f924a4aae3cf88131f54d14cc14b9dcc7aa0b566869073557f18a40be986af9830501b1a4f872903d6cd9f717fbe0d971c72
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SLY:bG74zYcgT/Ekd0ryfjkbCLY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2