711608be67040b4077d179c6d9c68a8b1b2bc3a0e20384704255c75612992c60 | Triage

Sharing

General

Target

2024-10-18_7a9f70ad2429cfe6d8d531e8e990949e_cryptolocker
Size

28KB
Sample

241018-f6q6kasgpp
MD5

7a9f70ad2429cfe6d8d531e8e990949e
SHA1

a64d9d7cb5ad2a3a71cfc40783184c9d29cfeedd
SHA256

711608be67040b4077d179c6d9c68a8b1b2bc3a0e20384704255c75612992c60
SHA512

1461a9be08297d8351e3ca953b4dca9dc0d57db513c962c795abb6172d5263225350fd86535c4ea60500eec848f780b8cdbaa9bbde3ad99b000166aee6b5d7d9
SSDEEP

768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQL:jKUog898rYMOtEvwDpja

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_7a9f70ad2429cfe6d8d531e8e990949e_cryptolocker
- Size
  
  28KB
- MD5
  
  7a9f70ad2429cfe6d8d531e8e990949e
- SHA1
  
  a64d9d7cb5ad2a3a71cfc40783184c9d29cfeedd
- SHA256
  
  711608be67040b4077d179c6d9c68a8b1b2bc3a0e20384704255c75612992c60
- SHA512
  
  1461a9be08297d8351e3ca953b4dca9dc0d57db513c962c795abb6172d5263225350fd86535c4ea60500eec848f780b8cdbaa9bbde3ad99b000166aee6b5d7d9
- SSDEEP
  
  768:jOb2gOo0mw18ae8MrQRN7DctOOtEvwDpjQL:jKUog898rYMOtEvwDpja
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2