797403d3e4faf62b178371476490bf1c58740102fa3560b0b134fcd768d1b8d5 | Triage

Sharing

General

Target

2024-11-02_0d57131d8854cd1db135851dd135654e_cryptolocker
Size

53KB
Sample

241102-g62gzazejh
MD5

0d57131d8854cd1db135851dd135654e
SHA1

afe0037118813adcbfe0a5874675a16ecf8360d7
SHA256

797403d3e4faf62b178371476490bf1c58740102fa3560b0b134fcd768d1b8d5
SHA512

ddc566fe62543e05f65b2ea1dec993c9bdd20cbdafdce7dba1404788f6dad03528d219b4b2dca2582a7d96f1fdd35d1994f350e9e0479245b17f6dd31cd8560b
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTHGfzrr:79mqyNhQMOtEvwDpjBxe8GGfr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_0d57131d8854cd1db135851dd135654e_cryptolocker
- Size
  
  53KB
- MD5
  
  0d57131d8854cd1db135851dd135654e
- SHA1
  
  afe0037118813adcbfe0a5874675a16ecf8360d7
- SHA256
  
  797403d3e4faf62b178371476490bf1c58740102fa3560b0b134fcd768d1b8d5
- SHA512
  
  ddc566fe62543e05f65b2ea1dec993c9bdd20cbdafdce7dba1404788f6dad03528d219b4b2dca2582a7d96f1fdd35d1994f350e9e0479245b17f6dd31cd8560b
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTHGfzrr:79mqyNhQMOtEvwDpjBxe8GGfr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2