5d7b8b323535f1409b7949d2da35e586ea73fa1d8330bdf66d1a0dc2e317ced4 | Triage

Sharing

General

Target

2024-11-20_5c4cc1b8984d6a8e8cec9a8ac18582d9_cryptolocker
Size

69KB
Sample

241120-dag7nszcmj
MD5

5c4cc1b8984d6a8e8cec9a8ac18582d9
SHA1

62b5b9846ee61a038ef90db6bab7a868113265b1
SHA256

5d7b8b323535f1409b7949d2da35e586ea73fa1d8330bdf66d1a0dc2e317ced4
SHA512

12a226ad025c83825e9a04599e310ccc8cf669ed3d506c3cf3856ce1889054fc565437189e2ab6f778a6112fc0d3185ad588687a1a0b2b3e64f79dc5476881f5
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEa:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7i

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_5c4cc1b8984d6a8e8cec9a8ac18582d9_cryptolocker
- Size
  
  69KB
- MD5
  
  5c4cc1b8984d6a8e8cec9a8ac18582d9
- SHA1
  
  62b5b9846ee61a038ef90db6bab7a868113265b1
- SHA256
  
  5d7b8b323535f1409b7949d2da35e586ea73fa1d8330bdf66d1a0dc2e317ced4
- SHA512
  
  12a226ad025c83825e9a04599e310ccc8cf669ed3d506c3cf3856ce1889054fc565437189e2ab6f778a6112fc0d3185ad588687a1a0b2b3e64f79dc5476881f5
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLEa:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7i
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2