3bc4e9466d1f5a2dfdc8f6d9e59470c6812593ceb482dc377d1371df5af1b9ee | Triage

Sharing

General

Target

2024-11-19_4805643fcc7eb120ee1a6ac4ce292c1b_cryptolocker
Size

62KB
Sample

241119-qpnzzs1nfk
MD5

4805643fcc7eb120ee1a6ac4ce292c1b
SHA1

d6cd822d7a329fa129d96690c5aa66a36b26fcbc
SHA256

3bc4e9466d1f5a2dfdc8f6d9e59470c6812593ceb482dc377d1371df5af1b9ee
SHA512

d059680f277326346db83b669b4bd3a39a8cdad37224e0fd4264686cc338b09724e8050238d21c8b4d42ec691249c5ab3a5c2a39d9b1d66925d948e342bec7c9
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293io:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-19_4805643fcc7eb120ee1a6ac4ce292c1b_cryptolocker
- Size
  
  62KB
- MD5
  
  4805643fcc7eb120ee1a6ac4ce292c1b
- SHA1
  
  d6cd822d7a329fa129d96690c5aa66a36b26fcbc
- SHA256
  
  3bc4e9466d1f5a2dfdc8f6d9e59470c6812593ceb482dc377d1371df5af1b9ee
- SHA512
  
  d059680f277326346db83b669b4bd3a39a8cdad37224e0fd4264686cc338b09724e8050238d21c8b4d42ec691249c5ab3a5c2a39d9b1d66925d948e342bec7c9
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293io:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2