51c1297d1cb3ccdff3b06abcd9c3ded06cc953e2ea30716818dcf24e8054587a | Triage

Sharing

General

Target

2024-10-18_b19f680d27876b37c2eb6759d4f0db0f_cryptolocker
Size

73KB
Sample

241018-c7xg7avglj
MD5

b19f680d27876b37c2eb6759d4f0db0f
SHA1

fe2735d84050ca52d539c1a3fea9513aa930eaf9
SHA256

51c1297d1cb3ccdff3b06abcd9c3ded06cc953e2ea30716818dcf24e8054587a
SHA512

94a6a045a044f2ac6e751af71a5e822f86d5c77dc2bdc661a340cc950a8a5c34fc07f47db2e0833df40929d04fa465fa7b1984bb61f3882be5af08f714571ffc
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KV:ZVxkGOtEvwDpjcaG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_b19f680d27876b37c2eb6759d4f0db0f_cryptolocker
- Size
  
  73KB
- MD5
  
  b19f680d27876b37c2eb6759d4f0db0f
- SHA1
  
  fe2735d84050ca52d539c1a3fea9513aa930eaf9
- SHA256
  
  51c1297d1cb3ccdff3b06abcd9c3ded06cc953e2ea30716818dcf24e8054587a
- SHA512
  
  94a6a045a044f2ac6e751af71a5e822f86d5c77dc2bdc661a340cc950a8a5c34fc07f47db2e0833df40929d04fa465fa7b1984bb61f3882be5af08f714571ffc
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KV:ZVxkGOtEvwDpjcaG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2