4fe93cc18b9fea033675cdf940093874cf76edde5165e1466572250d45e66dc5 | Triage

Sharing

General

Target

2024-11-02_c5bde157b84f95981f953b0ee3a5fb56_cryptolocker
Size

68KB
Sample

241102-g9h5ss1phm
MD5

c5bde157b84f95981f953b0ee3a5fb56
SHA1

f281c5533e0ff9828691b81eca2746ac87c08d28
SHA256

4fe93cc18b9fea033675cdf940093874cf76edde5165e1466572250d45e66dc5
SHA512

eb342ed2f6af329f3f839fad74a5e1f79c6cd04f9c50b60b769867838d59b6b721dfe51dc07791ef394997bd8c8ea8c5636edc0563f9cec22c5d033fdc0447e0
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEK:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7S

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-02_c5bde157b84f95981f953b0ee3a5fb56_cryptolocker
- Size
  
  68KB
- MD5
  
  c5bde157b84f95981f953b0ee3a5fb56
- SHA1
  
  f281c5533e0ff9828691b81eca2746ac87c08d28
- SHA256
  
  4fe93cc18b9fea033675cdf940093874cf76edde5165e1466572250d45e66dc5
- SHA512
  
  eb342ed2f6af329f3f839fad74a5e1f79c6cd04f9c50b60b769867838d59b6b721dfe51dc07791ef394997bd8c8ea8c5636edc0563f9cec22c5d033fdc0447e0
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEK:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7S
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2