64fadb74baf550bb9980f4f4fa76db9e0442fcb25bc0e591fe47eb54ef0f11cb | Triage

Sharing

General

Target

2024-11-20_eb9fe1313a7e569c5c40b25af935e7ef_cryptolocker
Size

62KB
Sample

241120-f5zfjssfql
MD5

eb9fe1313a7e569c5c40b25af935e7ef
SHA1

4ff7a4ef77e1cfac22391d76765c853f06c3a351
SHA256

64fadb74baf550bb9980f4f4fa76db9e0442fcb25bc0e591fe47eb54ef0f11cb
SHA512

d15c13ae9dac05791982bebd65b89c1d26a89818e0353e915a0cbad18a65664214d55b7738831d38b565372df9f73f5120c8da3a23b9b5a133918d7bffb3f2bd
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucz:ZVxkGOtEvwDpjcao

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_eb9fe1313a7e569c5c40b25af935e7ef_cryptolocker
- Size
  
  62KB
- MD5
  
  eb9fe1313a7e569c5c40b25af935e7ef
- SHA1
  
  4ff7a4ef77e1cfac22391d76765c853f06c3a351
- SHA256
  
  64fadb74baf550bb9980f4f4fa76db9e0442fcb25bc0e591fe47eb54ef0f11cb
- SHA512
  
  d15c13ae9dac05791982bebd65b89c1d26a89818e0353e915a0cbad18a65664214d55b7738831d38b565372df9f73f5120c8da3a23b9b5a133918d7bffb3f2bd
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucz:ZVxkGOtEvwDpjcao
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2