17ff2c07cc3744a7718eaacdca5e6e41b5fecdb5a80a6dab831fdc9b56b1a6dd | Triage

Sharing

General

Target

2024-11-20_5c152914c12de19beb74d5082527056c_cryptolocker
Size

38KB
Sample

241120-dzs1gazke1
MD5

5c152914c12de19beb74d5082527056c
SHA1

8e9d5bd914e8777458d9cd58b468269e02f07177
SHA256

17ff2c07cc3744a7718eaacdca5e6e41b5fecdb5a80a6dab831fdc9b56b1a6dd
SHA512

df077d748ba6109eac48f9cc721dc2faff6f009dab7758ae45ad278099dc168e0e1c335aa388bcaf7b055bf07f86a3c99ac2b96a297f47a746bb1479599c845e
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4A:fT+hsMQMOtEvwDpjoIHA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_5c152914c12de19beb74d5082527056c_cryptolocker
- Size
  
  38KB
- MD5
  
  5c152914c12de19beb74d5082527056c
- SHA1
  
  8e9d5bd914e8777458d9cd58b468269e02f07177
- SHA256
  
  17ff2c07cc3744a7718eaacdca5e6e41b5fecdb5a80a6dab831fdc9b56b1a6dd
- SHA512
  
  df077d748ba6109eac48f9cc721dc2faff6f009dab7758ae45ad278099dc168e0e1c335aa388bcaf7b055bf07f86a3c99ac2b96a297f47a746bb1479599c845e
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4A:fT+hsMQMOtEvwDpjoIHA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2