edf4e89d359efc84a5e38ab68c331ddaf19b7cb50180e2a23cabe7133598ba66 | Triage

Sharing

General

Target

2024-10-18_9330e795ec10b42efc6f1760b0bc4391_cryptolocker
Size

51KB
Sample

241018-kd18aazcmk
MD5

9330e795ec10b42efc6f1760b0bc4391
SHA1

3b5dbe74466721b2dd2917ecccd86b0407d7d82c
SHA256

edf4e89d359efc84a5e38ab68c331ddaf19b7cb50180e2a23cabe7133598ba66
SHA512

8a555baa070dfcf2d0588ba52544e955b1c29858d73c63efcc9b5f7d1a4ab8ac86301004566dcf0585727b511c39fb87a754d8500ed3908cb4be357b70e2d85a
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QC:6j+1NMOtEvwDpjr8oxEC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_9330e795ec10b42efc6f1760b0bc4391_cryptolocker
- Size
  
  51KB
- MD5
  
  9330e795ec10b42efc6f1760b0bc4391
- SHA1
  
  3b5dbe74466721b2dd2917ecccd86b0407d7d82c
- SHA256
  
  edf4e89d359efc84a5e38ab68c331ddaf19b7cb50180e2a23cabe7133598ba66
- SHA512
  
  8a555baa070dfcf2d0588ba52544e955b1c29858d73c63efcc9b5f7d1a4ab8ac86301004566dcf0585727b511c39fb87a754d8500ed3908cb4be357b70e2d85a
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QC:6j+1NMOtEvwDpjr8oxEC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2