0ba726b7c83c5bfc659ca3a1c46cb4a9502b39cdd55e5bbe8c60da6905b2d1f7 | Triage

Sharing

General

Target

2024-11-21_37ddccdd3278d0ca1628b1772565bde6_cryptolocker
Size

30KB
Sample

241121-hax1cazjex
MD5

37ddccdd3278d0ca1628b1772565bde6
SHA1

fc8dda79fc7260a10e34027c982a100a655a754d
SHA256

0ba726b7c83c5bfc659ca3a1c46cb4a9502b39cdd55e5bbe8c60da6905b2d1f7
SHA512

238e5ab2f039f71db4563e31966cc6b0d589452132f50f861d0e7a36788bab08d44b150775ea904828ae9f169270f130539f20692f5f149520e28edba80dd7a0
SSDEEP

384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hz:vQz7yVEhs9+js1SQtOOtEvwDpjz9+q5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_37ddccdd3278d0ca1628b1772565bde6_cryptolocker
- Size
  
  30KB
- MD5
  
  37ddccdd3278d0ca1628b1772565bde6
- SHA1
  
  fc8dda79fc7260a10e34027c982a100a655a754d
- SHA256
  
  0ba726b7c83c5bfc659ca3a1c46cb4a9502b39cdd55e5bbe8c60da6905b2d1f7
- SHA512
  
  238e5ab2f039f71db4563e31966cc6b0d589452132f50f861d0e7a36788bab08d44b150775ea904828ae9f169270f130539f20692f5f149520e28edba80dd7a0
- SSDEEP
  
  384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRS/Vb9hz:vQz7yVEhs9+js1SQtOOtEvwDpjz9+q5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2