7d86d8ad4f3d0054199296d862b9b24fa72351729d3edca6768b81480c0d6bac | Triage

Sharing

General

Target

2024-10-31_f45ec135215445d59fa4e7d7071b1b6f_cryptolocker
Size

31KB
Sample

241031-j5azqsvbnb
MD5

f45ec135215445d59fa4e7d7071b1b6f
SHA1

7f5264815774e71f31489019e7da4968b2ec7411
SHA256

7d86d8ad4f3d0054199296d862b9b24fa72351729d3edca6768b81480c0d6bac
SHA512

5ba7197fbfb19477d17a8ca9b7758df94daf7c80f0ddc058625a1a5c2075d2e11576c718f4ea09d5e003f48ada2aa85197c5503f988eeb89c5dc9da599b8334f
SSDEEP

384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hl:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4tf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_f45ec135215445d59fa4e7d7071b1b6f_cryptolocker
- Size
  
  31KB
- MD5
  
  f45ec135215445d59fa4e7d7071b1b6f
- SHA1
  
  7f5264815774e71f31489019e7da4968b2ec7411
- SHA256
  
  7d86d8ad4f3d0054199296d862b9b24fa72351729d3edca6768b81480c0d6bac
- SHA512
  
  5ba7197fbfb19477d17a8ca9b7758df94daf7c80f0ddc058625a1a5c2075d2e11576c718f4ea09d5e003f48ada2aa85197c5503f988eeb89c5dc9da599b8334f
- SSDEEP
  
  384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hl:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4tf
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2