02947e8e5f551db51108ef9a2f2935b7463f791719e39e14534099fa62c8b9f9 | Triage

Sharing

General

Target

2024-11-20_2cfeac8ecde3a0990f3ede0159b8229b_cryptolocker
Size

74KB
Sample

241120-dx6tjszkct
MD5

2cfeac8ecde3a0990f3ede0159b8229b
SHA1

5205bb1c8fc1105cbb84060680a90306a8b92675
SHA256

02947e8e5f551db51108ef9a2f2935b7463f791719e39e14534099fa62c8b9f9
SHA512

b856bb9a85ec1752c4d96a39629256afae059d0ea19d1fe66dc611955f86aa3ae8946216297812972af1ca6ae68f525dba005f613b4e21281ab91fb9d3d63a73
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zi:9Uj+AIMOtEvwDpjLizbR9Xwzi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_2cfeac8ecde3a0990f3ede0159b8229b_cryptolocker
- Size
  
  74KB
- MD5
  
  2cfeac8ecde3a0990f3ede0159b8229b
- SHA1
  
  5205bb1c8fc1105cbb84060680a90306a8b92675
- SHA256
  
  02947e8e5f551db51108ef9a2f2935b7463f791719e39e14534099fa62c8b9f9
- SHA512
  
  b856bb9a85ec1752c4d96a39629256afae059d0ea19d1fe66dc611955f86aa3ae8946216297812972af1ca6ae68f525dba005f613b4e21281ab91fb9d3d63a73
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zi:9Uj+AIMOtEvwDpjLizbR9Xwzi
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2