7704e747dbcc0d8d0c6236dd37507dcb881c7a0ce3d61204034a8a09ae4cc56a | Triage

Sharing

General

Target

2024-11-21_25ffc5ab1ee2f6f0d3335e750c844bbe_cryptolocker
Size

40KB
Sample

241121-h95jgatrel
MD5

25ffc5ab1ee2f6f0d3335e750c844bbe
SHA1

dcf5eeac10529c82209d1c80c214e15b74a38997
SHA256

7704e747dbcc0d8d0c6236dd37507dcb881c7a0ce3d61204034a8a09ae4cc56a
SHA512

aff358a230c54ab26fbead6886bc4a745baae555b567cc87571d9749531ce8eae347fa2d9d19d7cb4f299f8be6e7b5f3b84b66cd48a5d67ada78b71af58480df
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0Upac:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_25ffc5ab1ee2f6f0d3335e750c844bbe_cryptolocker
- Size
  
  40KB
- MD5
  
  25ffc5ab1ee2f6f0d3335e750c844bbe
- SHA1
  
  dcf5eeac10529c82209d1c80c214e15b74a38997
- SHA256
  
  7704e747dbcc0d8d0c6236dd37507dcb881c7a0ce3d61204034a8a09ae4cc56a
- SHA512
  
  aff358a230c54ab26fbead6886bc4a745baae555b567cc87571d9749531ce8eae347fa2d9d19d7cb4f299f8be6e7b5f3b84b66cd48a5d67ada78b71af58480df
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0Upac:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2