313b155ecda6d28d9402443d782b6dd9b077ca9aa8ffbdf05d7328b260b21dbd | Triage

Sharing

General

Target

2024-10-31_8eac4d5a82c2ed5f051a3aa9b3f0fbbc_cryptolocker
Size

87KB
Sample

241031-kc4l1svdjc
MD5

8eac4d5a82c2ed5f051a3aa9b3f0fbbc
SHA1

3fb18ed70d54ffd730957135ad9a92fb1c075d2c
SHA256

313b155ecda6d28d9402443d782b6dd9b077ca9aa8ffbdf05d7328b260b21dbd
SHA512

30c19b637f7ec9af3b3d852a9481e160c8d380bd81821418ada40bd520a9fa00dbacc6516aa1d2146531a2fedddbf2e27c7396b549d05cd52ef816279b35e608
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+Zr:TCjsIOtEvwDpj5HE/OUHnSMD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_8eac4d5a82c2ed5f051a3aa9b3f0fbbc_cryptolocker
- Size
  
  87KB
- MD5
  
  8eac4d5a82c2ed5f051a3aa9b3f0fbbc
- SHA1
  
  3fb18ed70d54ffd730957135ad9a92fb1c075d2c
- SHA256
  
  313b155ecda6d28d9402443d782b6dd9b077ca9aa8ffbdf05d7328b260b21dbd
- SHA512
  
  30c19b637f7ec9af3b3d852a9481e160c8d380bd81821418ada40bd520a9fa00dbacc6516aa1d2146531a2fedddbf2e27c7396b549d05cd52ef816279b35e608
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+Zr:TCjsIOtEvwDpj5HE/OUHnSMD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2