dfc73ba74732f0dcf73d7a0cd412d0f3d98896e81c4c9629f356ddf0cb59ef84 | Triage

Sharing

General

Target

2024-11-02_add651b00127ba3f3249ad923ee4fd64_cryptolocker
Size

63KB
Sample

241102-g1d5gszdnb
MD5

add651b00127ba3f3249ad923ee4fd64
SHA1

498ae858be183129526ff60d11bd69b12634a669
SHA256

dfc73ba74732f0dcf73d7a0cd412d0f3d98896e81c4c9629f356ddf0cb59ef84
SHA512

1245a22c358848611ce52400ec6ba902dada3253468680f2868546d7faf8ed381c954855e74af54d6686e91bc007bde9b9cd505097f58a53124baba3c1d120c7
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniaKbRo:aq7tdgI2MyzNORQtOflIwoHNV2XBFV74

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_add651b00127ba3f3249ad923ee4fd64_cryptolocker
- Size
  
  63KB
- MD5
  
  add651b00127ba3f3249ad923ee4fd64
- SHA1
  
  498ae858be183129526ff60d11bd69b12634a669
- SHA256
  
  dfc73ba74732f0dcf73d7a0cd412d0f3d98896e81c4c9629f356ddf0cb59ef84
- SHA512
  
  1245a22c358848611ce52400ec6ba902dada3253468680f2868546d7faf8ed381c954855e74af54d6686e91bc007bde9b9cd505097f58a53124baba3c1d120c7
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniaKbRo:aq7tdgI2MyzNORQtOflIwoHNV2XBFV74
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2