9dbc82446c0055e9f92993b7cd558800159ac45cb732cfaa99aeb96d445e1ef4 | Triage

Sharing

General

Target

2024-11-21_5a5eed8259d61e06d1b3b5a5df743c07_cryptolocker
Size

44KB
Sample

241121-ebtgrsyhpr
MD5

5a5eed8259d61e06d1b3b5a5df743c07
SHA1

44b8842d1e8ae952abba15750bf1bc5db5c755c7
SHA256

9dbc82446c0055e9f92993b7cd558800159ac45cb732cfaa99aeb96d445e1ef4
SHA512

f8ef7d0d16199a044b9046b666c93b68cbbd122451a498e002d80e4b568845bc8c85fb3ffc43b2291aa14c9aecf922954bb62c3effa869c87c98f53b9485b987
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrxD:bCDOw9aMDooc+vAqjtD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_5a5eed8259d61e06d1b3b5a5df743c07_cryptolocker
- Size
  
  44KB
- MD5
  
  5a5eed8259d61e06d1b3b5a5df743c07
- SHA1
  
  44b8842d1e8ae952abba15750bf1bc5db5c755c7
- SHA256
  
  9dbc82446c0055e9f92993b7cd558800159ac45cb732cfaa99aeb96d445e1ef4
- SHA512
  
  f8ef7d0d16199a044b9046b666c93b68cbbd122451a498e002d80e4b568845bc8c85fb3ffc43b2291aa14c9aecf922954bb62c3effa869c87c98f53b9485b987
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrxD:bCDOw9aMDooc+vAqjtD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2