fefc609d1bbc9db698deaa466aef8fee9e0c827d2ae3b49f6d0337a5d563233c | Triage

Sharing

General

Target

2024-10-31_ead71cc39b9da89b211f21635df5743f_cryptolocker
Size

63KB
Sample

241031-j2dw8avdlj
MD5

ead71cc39b9da89b211f21635df5743f
SHA1

41385b0551dc5f624537b194740de324fac58c76
SHA256

fefc609d1bbc9db698deaa466aef8fee9e0c827d2ae3b49f6d0337a5d563233c
SHA512

11976d376903fe9dc531ef635eaee38d54676e042eb57c52383d0e453ed04a36f90b580dd5d7184165ff203a09c3f6619449f6e7f1effcc6dd019ac45185031a
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMNuSA:TCjsIOtEvwDpj5HE/OUHnSMZn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_ead71cc39b9da89b211f21635df5743f_cryptolocker
- Size
  
  63KB
- MD5
  
  ead71cc39b9da89b211f21635df5743f
- SHA1
  
  41385b0551dc5f624537b194740de324fac58c76
- SHA256
  
  fefc609d1bbc9db698deaa466aef8fee9e0c827d2ae3b49f6d0337a5d563233c
- SHA512
  
  11976d376903fe9dc531ef635eaee38d54676e042eb57c52383d0e453ed04a36f90b580dd5d7184165ff203a09c3f6619449f6e7f1effcc6dd019ac45185031a
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMNuSA:TCjsIOtEvwDpj5HE/OUHnSMZn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2