c2136221c2ad2cfa9f6c887d3557d8d1186756425d376d7b96458480f97fec4d | Triage

Sharing

General

Target

2024-10-31_ff7add3b5bbea75deb80d10f6c5b1692_cryptolocker
Size

87KB
Sample

241031-j8sc7avejl
MD5

ff7add3b5bbea75deb80d10f6c5b1692
SHA1

6b87948e3f3b9967aa533a0326638743f8d088d4
SHA256

c2136221c2ad2cfa9f6c887d3557d8d1186756425d376d7b96458480f97fec4d
SHA512

3bc40b8225a9467c58918d4b09fc1723815d03c2060b8142ba094926aafddab8044467e9be45be5e85b8ab71036021ba02d5498db604f1d5761a21eb6d5a7b38
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+ZN:TCjsIOtEvwDpj5HE/OUHnSMl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_ff7add3b5bbea75deb80d10f6c5b1692_cryptolocker
- Size
  
  87KB
- MD5
  
  ff7add3b5bbea75deb80d10f6c5b1692
- SHA1
  
  6b87948e3f3b9967aa533a0326638743f8d088d4
- SHA256
  
  c2136221c2ad2cfa9f6c887d3557d8d1186756425d376d7b96458480f97fec4d
- SHA512
  
  3bc40b8225a9467c58918d4b09fc1723815d03c2060b8142ba094926aafddab8044467e9be45be5e85b8ab71036021ba02d5498db604f1d5761a21eb6d5a7b38
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+ZN:TCjsIOtEvwDpj5HE/OUHnSMl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2