f120634d990d4cb8c3a92c1d12ca4b7fd357dd39096f5870fef7448f0bc2162d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_227723feb987a1721e5bcf4fee2625fb_cryptolocker
Size

39KB
Sample

241018-d2e7dsvbpg
MD5

227723feb987a1721e5bcf4fee2625fb
SHA1

f3d534277ee0ba9de23f15fb84ee0ef43de11f05
SHA256

f120634d990d4cb8c3a92c1d12ca4b7fd357dd39096f5870fef7448f0bc2162d
SHA512

2ead4dec87aae9817cef581da65d3937d594b056ac3233fffe8013bbce88592e3da005413d8fd938bfad2d5b6b631b28501319aab5bd72671336a3542e434873
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/UkRYzMAZ+gAx:vj+jsMQMOtEvwDpj5HcSYPu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_227723feb987a1721e5bcf4fee2625fb_cryptolocker
- Size
  
  39KB
- MD5
  
  227723feb987a1721e5bcf4fee2625fb
- SHA1
  
  f3d534277ee0ba9de23f15fb84ee0ef43de11f05
- SHA256
  
  f120634d990d4cb8c3a92c1d12ca4b7fd357dd39096f5870fef7448f0bc2162d
- SHA512
  
  2ead4dec87aae9817cef581da65d3937d594b056ac3233fffe8013bbce88592e3da005413d8fd938bfad2d5b6b631b28501319aab5bd72671336a3542e434873
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/UkRYzMAZ+gAx:vj+jsMQMOtEvwDpj5HcSYPu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2