6d0550f22fb4b3ba123527922a8caca73b78a7ec0c6b668144fbf14787526f99 | Triage

Sharing

General

Target

2024-11-21_2127291ff893f9572a3eda33ed9fcba2_cryptolocker
Size

75KB
Sample

241121-h91khstrej
MD5

2127291ff893f9572a3eda33ed9fcba2
SHA1

8978c18c9230e700f9ae7177d9eb48fed22fa7e7
SHA256

6d0550f22fb4b3ba123527922a8caca73b78a7ec0c6b668144fbf14787526f99
SHA512

c7fe9a1ed419a7f3531e3c892cd37d28c90ae3e3902e8b8bc51232be0287bb5f1514e8aef574c0f8013b3fa0f482ff42b816945b66cd46a2bf34feaf275f2691
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zMy:9Uj+AIMOtEvwDpjLizbR9XwzP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_2127291ff893f9572a3eda33ed9fcba2_cryptolocker
- Size
  
  75KB
- MD5
  
  2127291ff893f9572a3eda33ed9fcba2
- SHA1
  
  8978c18c9230e700f9ae7177d9eb48fed22fa7e7
- SHA256
  
  6d0550f22fb4b3ba123527922a8caca73b78a7ec0c6b668144fbf14787526f99
- SHA512
  
  c7fe9a1ed419a7f3531e3c892cd37d28c90ae3e3902e8b8bc51232be0287bb5f1514e8aef574c0f8013b3fa0f482ff42b816945b66cd46a2bf34feaf275f2691
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zMy:9Uj+AIMOtEvwDpjLizbR9XwzP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2