843b4b5534015ab1154a1ba84431f60c065db61aa800d0ba67524f745cdf2681 | Triage

Sharing

General

Target

2024-11-20_fcb268ae9020f771175891766830a4c6_cryptolocker
Size

45KB
Sample

241120-f6xckssjcs
MD5

fcb268ae9020f771175891766830a4c6
SHA1

567788592d7eedf49e9f2a2c7b0a579473160786
SHA256

843b4b5534015ab1154a1ba84431f60c065db61aa800d0ba67524f745cdf2681
SHA512

26a8fabab52b3d3d28d26a7c89a0801a427ebffcf22b76cc4c8bb687fb5c182ff11050984347d248f5c8d6ddbc19c450f49461374f7928f589525fd8b2dd7c3d
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrh:bCDOw9aMDooc+vAqj9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_fcb268ae9020f771175891766830a4c6_cryptolocker
- Size
  
  45KB
- MD5
  
  fcb268ae9020f771175891766830a4c6
- SHA1
  
  567788592d7eedf49e9f2a2c7b0a579473160786
- SHA256
  
  843b4b5534015ab1154a1ba84431f60c065db61aa800d0ba67524f745cdf2681
- SHA512
  
  26a8fabab52b3d3d28d26a7c89a0801a427ebffcf22b76cc4c8bb687fb5c182ff11050984347d248f5c8d6ddbc19c450f49461374f7928f589525fd8b2dd7c3d
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrh:bCDOw9aMDooc+vAqj9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2