3908844df0f93b5ba0b5228b138247128406fc336635f1ca5098169c43cd10e5 | Triage

Sharing

General

Target

2024-11-20_d61b96ecae1b8558a3019dacd90b9b85_cryptolocker
Size

74KB
Sample

241120-d6vgwa1bmr
MD5

d61b96ecae1b8558a3019dacd90b9b85
SHA1

55c733963540a7b2dec4a147ad7c46fa1e0c88a4
SHA256

3908844df0f93b5ba0b5228b138247128406fc336635f1ca5098169c43cd10e5
SHA512

99119f51d71daeeffae4da82db52256a39757b22d5b3d7319be071e11d5ebb31fee8ffdae35fc1201f915f36e1b45363df5cf3897c06fb5102fc1513b49610e0
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zu:9Uj+AIMOtEvwDpjLizbR9Xwzu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_d61b96ecae1b8558a3019dacd90b9b85_cryptolocker
- Size
  
  74KB
- MD5
  
  d61b96ecae1b8558a3019dacd90b9b85
- SHA1
  
  55c733963540a7b2dec4a147ad7c46fa1e0c88a4
- SHA256
  
  3908844df0f93b5ba0b5228b138247128406fc336635f1ca5098169c43cd10e5
- SHA512
  
  99119f51d71daeeffae4da82db52256a39757b22d5b3d7319be071e11d5ebb31fee8ffdae35fc1201f915f36e1b45363df5cf3897c06fb5102fc1513b49610e0
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zu:9Uj+AIMOtEvwDpjLizbR9Xwzu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2