b381f168924ad89ca4f006d86dca9add7073704eab24bec3ee1856a5ad2f6377 | Triage

Sharing

General

Target

2024-10-18_6bb174ece6dbab30706f1da2a0c25b38_cryptolocker
Size

46KB
Sample

241018-pjyfssyhjk
MD5

6bb174ece6dbab30706f1da2a0c25b38
SHA1

56fd773279149d5c7b69b393daafe306b543e5c9
SHA256

b381f168924ad89ca4f006d86dca9add7073704eab24bec3ee1856a5ad2f6377
SHA512

311b283ca0db8f683e5304536f975527e4f4c27e771f94e7ac7c1004480002c12f181b58d7456389a0415909257edab60de75e895ae8e1868fce777834cfaf9f
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHumP:bCDOw9aMDooc+vAlXnP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-18_6bb174ece6dbab30706f1da2a0c25b38_cryptolocker
- Size
  
  46KB
- MD5
  
  6bb174ece6dbab30706f1da2a0c25b38
- SHA1
  
  56fd773279149d5c7b69b393daafe306b543e5c9
- SHA256
  
  b381f168924ad89ca4f006d86dca9add7073704eab24bec3ee1856a5ad2f6377
- SHA512
  
  311b283ca0db8f683e5304536f975527e4f4c27e771f94e7ac7c1004480002c12f181b58d7456389a0415909257edab60de75e895ae8e1868fce777834cfaf9f
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHumP:bCDOw9aMDooc+vAlXnP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2