9c32a1b22e1a984b9360b63c507226a99327fa05501204c006fb16b06338d05d | Triage

Sharing

General

Target

2024-11-20_4463c05166da25f3bf8ec52e5998d0bb_cryptolocker
Size

55KB
Sample

241120-c9kleayekh
MD5

4463c05166da25f3bf8ec52e5998d0bb
SHA1

9ed7cc5e94d2adad60f621c53d43e7dab5dbc6e1
SHA256

9c32a1b22e1a984b9360b63c507226a99327fa05501204c006fb16b06338d05d
SHA512

d9ab52cd7c623f4cee0fc64729e6a8e71aaf783d639692c4f7c53212d86819a8f2f40b55428bb3e36f70cae75760ff2d33adf3c92be2a487b4fa568d84b166e0
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIM:X6QFElP6n+gJBMOtEvwDpjBtExmln

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_4463c05166da25f3bf8ec52e5998d0bb_cryptolocker
- Size
  
  55KB
- MD5
  
  4463c05166da25f3bf8ec52e5998d0bb
- SHA1
  
  9ed7cc5e94d2adad60f621c53d43e7dab5dbc6e1
- SHA256
  
  9c32a1b22e1a984b9360b63c507226a99327fa05501204c006fb16b06338d05d
- SHA512
  
  d9ab52cd7c623f4cee0fc64729e6a8e71aaf783d639692c4f7c53212d86819a8f2f40b55428bb3e36f70cae75760ff2d33adf3c92be2a487b4fa568d84b166e0
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIM:X6QFElP6n+gJBMOtEvwDpjBtExmln
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2