ea2c9bca41b40af03705766748260a50120060556f28a71b5f038e6f64c15f0e | Triage

Sharing

General

Target

2024-11-20_07efedf57f3ba59cb1f21811b2c75127_cryptolocker
Size

34KB
Sample

241120-dw1k5szjh1
MD5

07efedf57f3ba59cb1f21811b2c75127
SHA1

98638beba81a48b27e9ea99c925de406fd118649
SHA256

ea2c9bca41b40af03705766748260a50120060556f28a71b5f038e6f64c15f0e
SHA512

0d97ef71874fa57bfaa0370752c22e6f486be653a4455fa992759dabbc6e8a6294d8787871619c9257fd21a2eb7ec1cb1e42711d6db3c1094969fff57bf6f60f
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuaD:bG74zYcgT/Ekd0ryfj6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_07efedf57f3ba59cb1f21811b2c75127_cryptolocker
- Size
  
  34KB
- MD5
  
  07efedf57f3ba59cb1f21811b2c75127
- SHA1
  
  98638beba81a48b27e9ea99c925de406fd118649
- SHA256
  
  ea2c9bca41b40af03705766748260a50120060556f28a71b5f038e6f64c15f0e
- SHA512
  
  0d97ef71874fa57bfaa0370752c22e6f486be653a4455fa992759dabbc6e8a6294d8787871619c9257fd21a2eb7ec1cb1e42711d6db3c1094969fff57bf6f60f
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuaD:bG74zYcgT/Ekd0ryfj6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2