2633dbfabb8d0222898033b3b52b1da0f48359444cb754db9ecaab1f94005c3a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_854e8f621bebf477ece49e0a8261672b_cryptolocker
Size

33KB
Sample

241018-efdl4sycrq
MD5

854e8f621bebf477ece49e0a8261672b
SHA1

562fd6a3ec4a4a8ad28f27bf853332c542aededf
SHA256

2633dbfabb8d0222898033b3b52b1da0f48359444cb754db9ecaab1f94005c3a
SHA512

07e8f3bd583b881171c917b691d53c247faea0e302f564c7ce61cd96aa3c6411b5d9ccaa8373e105156a192d86b3cdff90b02a3fb98fed6767385af183008750
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPoe:YGzl5wjRQBBOsP1QMOtEvwDpjgarle

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_854e8f621bebf477ece49e0a8261672b_cryptolocker
- Size
  
  33KB
- MD5
  
  854e8f621bebf477ece49e0a8261672b
- SHA1
  
  562fd6a3ec4a4a8ad28f27bf853332c542aededf
- SHA256
  
  2633dbfabb8d0222898033b3b52b1da0f48359444cb754db9ecaab1f94005c3a
- SHA512
  
  07e8f3bd583b881171c917b691d53c247faea0e302f564c7ce61cd96aa3c6411b5d9ccaa8373e105156a192d86b3cdff90b02a3fb98fed6767385af183008750
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPoe:YGzl5wjRQBBOsP1QMOtEvwDpjgarle
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2