a6841d9b2b6a4049dad27adbe44cb1510bd26bfd5f833a94f4c94014405d5497 | Triage

Sharing

General

Target

2024-11-20_492f5c6447ca235aacc4939dbb969057_cryptolocker
Size

72KB
Sample

241120-f3h1sa1rdw
MD5

492f5c6447ca235aacc4939dbb969057
SHA1

7aba0c8984ff62d13545229d1881b932477addbd
SHA256

a6841d9b2b6a4049dad27adbe44cb1510bd26bfd5f833a94f4c94014405d5497
SHA512

867e9e8b6377840dedfed16116f7b7b06066502026d10dda9f0fee1245c11d3a750a9fe92b678296855b05e70f7ac8d4ab48971a1a571f32de3c2c80312eda42
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5t:DW60sllyWOtEvwDpjwF85U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_492f5c6447ca235aacc4939dbb969057_cryptolocker
- Size
  
  72KB
- MD5
  
  492f5c6447ca235aacc4939dbb969057
- SHA1
  
  7aba0c8984ff62d13545229d1881b932477addbd
- SHA256
  
  a6841d9b2b6a4049dad27adbe44cb1510bd26bfd5f833a94f4c94014405d5497
- SHA512
  
  867e9e8b6377840dedfed16116f7b7b06066502026d10dda9f0fee1245c11d3a750a9fe92b678296855b05e70f7ac8d4ab48971a1a571f32de3c2c80312eda42
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO5t:DW60sllyWOtEvwDpjwF85U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2