8cd2dbceef9b3b3b8c38c4161eb4dbe06665d1f38dfcd55f22e1dfee7bdfb7e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_e1ac6e4b6c73b61721229a81ce9daa90_cryptolocker
Size

37KB
Sample

241018-dca65ssfqh
MD5

e1ac6e4b6c73b61721229a81ce9daa90
SHA1

8af237792acee1d351f9f102319de14e9b4432a1
SHA256

8cd2dbceef9b3b3b8c38c4161eb4dbe06665d1f38dfcd55f22e1dfee7bdfb7e5
SHA512

de890a96b9b5fdd197f10837a267b98e322d26c89f1ec33abed9086acb8ba5c7fa92ab02246f5dd116f2343a46c68fc3a8019c676901e20da014cbf0e085ced5
SSDEEP

768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9Rva/+J:i5nkFGMOtEvwDpjR+vi+J

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_e1ac6e4b6c73b61721229a81ce9daa90_cryptolocker
- Size
  
  37KB
- MD5
  
  e1ac6e4b6c73b61721229a81ce9daa90
- SHA1
  
  8af237792acee1d351f9f102319de14e9b4432a1
- SHA256
  
  8cd2dbceef9b3b3b8c38c4161eb4dbe06665d1f38dfcd55f22e1dfee7bdfb7e5
- SHA512
  
  de890a96b9b5fdd197f10837a267b98e322d26c89f1ec33abed9086acb8ba5c7fa92ab02246f5dd116f2343a46c68fc3a8019c676901e20da014cbf0e085ced5
- SSDEEP
  
  768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9Rva/+J:i5nkFGMOtEvwDpjR+vi+J
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2