e39d506f58a3d2385d9415affb8fd06ee34e65364a7f58b335def119078f7ce9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-18_2053ae4453407e2823f4744af6036f32_cryptolocker
Size

74KB
Sample

241018-g5xgmasblg
MD5

2053ae4453407e2823f4744af6036f32
SHA1

90fc2a63c132cda0c9693db127e83f371f2b5d6c
SHA256

e39d506f58a3d2385d9415affb8fd06ee34e65364a7f58b335def119078f7ce9
SHA512

aca7b518e32c2cf6589d219611a701ec705035ac2bed0385c792eae625a54f114fe510b4de74ef5f70788fd2d0d7cc52a1f5baaa932259494d9a3b17865f5de5
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zt:9Uj+AIMOtEvwDpjLizbR9Xwzt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_2053ae4453407e2823f4744af6036f32_cryptolocker
- Size
  
  74KB
- MD5
  
  2053ae4453407e2823f4744af6036f32
- SHA1
  
  90fc2a63c132cda0c9693db127e83f371f2b5d6c
- SHA256
  
  e39d506f58a3d2385d9415affb8fd06ee34e65364a7f58b335def119078f7ce9
- SHA512
  
  aca7b518e32c2cf6589d219611a701ec705035ac2bed0385c792eae625a54f114fe510b4de74ef5f70788fd2d0d7cc52a1f5baaa932259494d9a3b17865f5de5
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zt:9Uj+AIMOtEvwDpjLizbR9Xwzt
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2