0917c166d6fc68a7f661c02fc22730bec309df0d7ce6c91ae5fc0b3f3a7f067a | Triage

Sharing

General

Target

2024-10-18_72482ecd249a73ff464697406039dae8_cryptolocker
Size

54KB
Sample

241018-e5v8fszgqm
MD5

72482ecd249a73ff464697406039dae8
SHA1

59093314ade32550a59d03983aad9587ff934284
SHA256

0917c166d6fc68a7f661c02fc22730bec309df0d7ce6c91ae5fc0b3f3a7f067a
SHA512

4d5fdaa424dc79ff1f2b2115085a721745999c69f7b55371bc5f0fa8545c3667859930b2923dd23765e3c94acd02e04c2de200500b00947fc99a14f83a7e2ac2
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3Vyl3NfT:79mqyNhQMOtEvwDpjBPY7xv3g91T

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_72482ecd249a73ff464697406039dae8_cryptolocker
- Size
  
  54KB
- MD5
  
  72482ecd249a73ff464697406039dae8
- SHA1
  
  59093314ade32550a59d03983aad9587ff934284
- SHA256
  
  0917c166d6fc68a7f661c02fc22730bec309df0d7ce6c91ae5fc0b3f3a7f067a
- SHA512
  
  4d5fdaa424dc79ff1f2b2115085a721745999c69f7b55371bc5f0fa8545c3667859930b2923dd23765e3c94acd02e04c2de200500b00947fc99a14f83a7e2ac2
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3Vyl3NfT:79mqyNhQMOtEvwDpjBPY7xv3g91T
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2