0ee057d18b2127654d07e157bf268206bd8b964037309daa3733acfbe30a736a | Triage

Sharing

General

Target

2024-11-02_b5f423222f4fcb655ee2e949022607b2_cryptolocker
Size

93KB
Sample

241102-g28eqa1pbr
MD5

b5f423222f4fcb655ee2e949022607b2
SHA1

11b1566de3ec66c0467ee1cf14d39e11c2036e7e
SHA256

0ee057d18b2127654d07e157bf268206bd8b964037309daa3733acfbe30a736a
SHA512

9ccd7d307437ae00e1e4c9ec52a987cabacd5f2fce6bb63b35b0894df882ea4e86b54b0038e46d7f4946da310fb007dcfbd25f974de84d42b69bad93333b4825
SSDEEP

1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNCJF:26a+2OtEvwDpjtzwF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_b5f423222f4fcb655ee2e949022607b2_cryptolocker
- Size
  
  93KB
- MD5
  
  b5f423222f4fcb655ee2e949022607b2
- SHA1
  
  11b1566de3ec66c0467ee1cf14d39e11c2036e7e
- SHA256
  
  0ee057d18b2127654d07e157bf268206bd8b964037309daa3733acfbe30a736a
- SHA512
  
  9ccd7d307437ae00e1e4c9ec52a987cabacd5f2fce6bb63b35b0894df882ea4e86b54b0038e46d7f4946da310fb007dcfbd25f974de84d42b69bad93333b4825
- SSDEEP
  
  1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNCJF:26a+2OtEvwDpjtzwF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2