5c118feadf68f3e0cde8cf93a31a0dabcf9d18011267fe098e48c378f4116678 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_24ad80f08d923f43d29217cd4ba9558c_cryptolocker
Size

76KB
Sample

241018-g56qassbmg
MD5

24ad80f08d923f43d29217cd4ba9558c
SHA1

658dd4d289f8ae2231599c9aee7372b23c097b97
SHA256

5c118feadf68f3e0cde8cf93a31a0dabcf9d18011267fe098e48c378f4116678
SHA512

ade16509583650b3cedca9f1965dd989809258797ef02870d2ebc6349b124e3e89a49e440f5ad823fab31f296cfee1c32fd79ef2ffe53c0023be62af79181c35
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfR:xj+VGMOtEvwDpjubwQEI8UJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_24ad80f08d923f43d29217cd4ba9558c_cryptolocker
- Size
  
  76KB
- MD5
  
  24ad80f08d923f43d29217cd4ba9558c
- SHA1
  
  658dd4d289f8ae2231599c9aee7372b23c097b97
- SHA256
  
  5c118feadf68f3e0cde8cf93a31a0dabcf9d18011267fe098e48c378f4116678
- SHA512
  
  ade16509583650b3cedca9f1965dd989809258797ef02870d2ebc6349b124e3e89a49e440f5ad823fab31f296cfee1c32fd79ef2ffe53c0023be62af79181c35
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfR:xj+VGMOtEvwDpjubwQEI8UJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2