4c5a5b3184fb282fdd92d92b7359451d8949e71c3b5694a66a2b6f857ec15f5b | Triage

Sharing

General

Target

2024-10-18_d475e663d7b2bc5d277d38260e90826f_cryptolocker
Size

50KB
Sample

241018-mlgjyssbpe
MD5

d475e663d7b2bc5d277d38260e90826f
SHA1

198020debcc55db6950b6b0905a5f135ec438440
SHA256

4c5a5b3184fb282fdd92d92b7359451d8949e71c3b5694a66a2b6f857ec15f5b
SHA512

0f67dcd83a6b6551c3334c5c5fc665e65bd5da4a2aa12bb5402a0c5d38d7296da3edd4fce53ef8a8491d1c677dcbfadc896199cbd97eb314250163b96091c114
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9z:bIDOw9a0DwitDZzA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_d475e663d7b2bc5d277d38260e90826f_cryptolocker
- Size
  
  50KB
- MD5
  
  d475e663d7b2bc5d277d38260e90826f
- SHA1
  
  198020debcc55db6950b6b0905a5f135ec438440
- SHA256
  
  4c5a5b3184fb282fdd92d92b7359451d8949e71c3b5694a66a2b6f857ec15f5b
- SHA512
  
  0f67dcd83a6b6551c3334c5c5fc665e65bd5da4a2aa12bb5402a0c5d38d7296da3edd4fce53ef8a8491d1c677dcbfadc896199cbd97eb314250163b96091c114
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9z:bIDOw9a0DwitDZzA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2