1d6603d98dc8c1c9c939d91f19399d5657a55967d4c3ae063e3bc0bfaa4164e4 | Triage

Sharing

General

Target

2024-10-31_fd265d78d9883573927734e9815213e7_cryptolocker
Size

40KB
Sample

241031-j64cnswldq
MD5

fd265d78d9883573927734e9815213e7
SHA1

5a9d70cb3ba923e58e0560be238b2477ecf4633e
SHA256

1d6603d98dc8c1c9c939d91f19399d5657a55967d4c3ae063e3bc0bfaa4164e4
SHA512

96e26d76e1b026338a1d5c4c06d71d217d7263dc733e89145c5f50ae2a3ae07bde5dbcc606c4d1e641ae5fb7236b1a5b9c1be76ecb4dfd241eede9b3df348236
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaacQsdRLIk:X6QFElP6n+gJQMOtEvwDpjBsQpk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_fd265d78d9883573927734e9815213e7_cryptolocker
- Size
  
  40KB
- MD5
  
  fd265d78d9883573927734e9815213e7
- SHA1
  
  5a9d70cb3ba923e58e0560be238b2477ecf4633e
- SHA256
  
  1d6603d98dc8c1c9c939d91f19399d5657a55967d4c3ae063e3bc0bfaa4164e4
- SHA512
  
  96e26d76e1b026338a1d5c4c06d71d217d7263dc733e89145c5f50ae2a3ae07bde5dbcc606c4d1e641ae5fb7236b1a5b9c1be76ecb4dfd241eede9b3df348236
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaacQsdRLIk:X6QFElP6n+gJQMOtEvwDpjBsQpk
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2