622a03db6ad6a68b3c590ea9b5009c49006c5f2be7b0f4858ed78f55937beb62 | Triage

Sharing

General

Target

2024-11-21_2417bf2736100c1f12c807b176760b71_cryptolocker
Size

72KB
Sample

241121-hacdmstpcq
MD5

2417bf2736100c1f12c807b176760b71
SHA1

a67a417eb62972bd2d4ee62c093b70c2f430ff69
SHA256

622a03db6ad6a68b3c590ea9b5009c49006c5f2be7b0f4858ed78f55937beb62
SHA512

7e6c6bfc3771021e63f2d873fc936da29e10b3d481d957b8c9c3a3bcb7b6a26a39eb417ddbc73e47769f915332dcd1041cfc470b29f7aa38dcf7e6e92ad01918
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO6:DW60sllyWOtEvwDpjwF85B

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_2417bf2736100c1f12c807b176760b71_cryptolocker
- Size
  
  72KB
- MD5
  
  2417bf2736100c1f12c807b176760b71
- SHA1
  
  a67a417eb62972bd2d4ee62c093b70c2f430ff69
- SHA256
  
  622a03db6ad6a68b3c590ea9b5009c49006c5f2be7b0f4858ed78f55937beb62
- SHA512
  
  7e6c6bfc3771021e63f2d873fc936da29e10b3d481d957b8c9c3a3bcb7b6a26a39eb417ddbc73e47769f915332dcd1041cfc470b29f7aa38dcf7e6e92ad01918
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZO6:DW60sllyWOtEvwDpjwF85B
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2