2f7f4700d17fc8278e8834e71b64d9aaf938bb23f504c1994546327f12df6225 | Triage

Sharing

General

Target

2024-11-20_bec88d1cf4d03a2441383daed8f25f03_cryptolocker
Size

64KB
Sample

241120-d5xkva1bkn
MD5

bec88d1cf4d03a2441383daed8f25f03
SHA1

58506061c83c8a7960d9b49c5074b5d3d2e46063
SHA256

2f7f4700d17fc8278e8834e71b64d9aaf938bb23f504c1994546327f12df6225
SHA512

708dc96c84708afabfacbc01081a7c38864296528aaaa394337d18fd9c9087b4251f0a9963cc5753a8cd986c368945fdaa0fd285d6fe90c65d0b7a6ea4087d0d
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnT5D:btng54SMLr+/AO/kIhfoKMHdaR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_bec88d1cf4d03a2441383daed8f25f03_cryptolocker
- Size
  
  64KB
- MD5
  
  bec88d1cf4d03a2441383daed8f25f03
- SHA1
  
  58506061c83c8a7960d9b49c5074b5d3d2e46063
- SHA256
  
  2f7f4700d17fc8278e8834e71b64d9aaf938bb23f504c1994546327f12df6225
- SHA512
  
  708dc96c84708afabfacbc01081a7c38864296528aaaa394337d18fd9c9087b4251f0a9963cc5753a8cd986c368945fdaa0fd285d6fe90c65d0b7a6ea4087d0d
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnT5D:btng54SMLr+/AO/kIhfoKMHdaR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2