60eb593f3dd542ebee4ec061f893c542ed0055ed5884fd1441dfc261f51cc4d7 | Triage

Sharing

General

Target

2024-10-31_8afddd23a8d516185ced6a2853436e22_cryptolocker
Size

39KB
Sample

241031-kcww6svfjj
MD5

8afddd23a8d516185ced6a2853436e22
SHA1

3e6158215e4f686f15a0aab234ad6bda18610862
SHA256

60eb593f3dd542ebee4ec061f893c542ed0055ed5884fd1441dfc261f51cc4d7
SHA512

c5609914f96128fa89b3359125aea714ec8d735ff8b46985e813ca103527c9ccd5ff7b8e5a219f61abdd76330f6da3e2eeeea9a47486b42fe7da7de59a3e2011
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qt:fT+hsMQMOtEvwDpjoIHW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-31_8afddd23a8d516185ced6a2853436e22_cryptolocker
- Size
  
  39KB
- MD5
  
  8afddd23a8d516185ced6a2853436e22
- SHA1
  
  3e6158215e4f686f15a0aab234ad6bda18610862
- SHA256
  
  60eb593f3dd542ebee4ec061f893c542ed0055ed5884fd1441dfc261f51cc4d7
- SHA512
  
  c5609914f96128fa89b3359125aea714ec8d735ff8b46985e813ca103527c9ccd5ff7b8e5a219f61abdd76330f6da3e2eeeea9a47486b42fe7da7de59a3e2011
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qt:fT+hsMQMOtEvwDpjoIHW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2