93ed599fd4b13cb6f90311e42ddd4b3687ac36ab796a9ac46acf745a4b69bcec | Triage

Sharing

General

Target

2024-11-21_64a774d2cc159d09ac14b7eda4a856ee_cryptolocker
Size

46KB
Sample

241121-hk9f5azkbz
MD5

64a774d2cc159d09ac14b7eda4a856ee
SHA1

c09541b23434e02a77b503c9836bd185ab8361f2
SHA256

93ed599fd4b13cb6f90311e42ddd4b3687ac36ab796a9ac46acf745a4b69bcec
SHA512

a826de4cd699facdb10505c8d39f8163ea183af9f79157c6edf48a80fd9788d58e3daeba4fd0a659ad1e45a9b72c74593e7bb87724c7a1a34c592bc842970bc3
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkdtR:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_64a774d2cc159d09ac14b7eda4a856ee_cryptolocker
- Size
  
  46KB
- MD5
  
  64a774d2cc159d09ac14b7eda4a856ee
- SHA1
  
  c09541b23434e02a77b503c9836bd185ab8361f2
- SHA256
  
  93ed599fd4b13cb6f90311e42ddd4b3687ac36ab796a9ac46acf745a4b69bcec
- SHA512
  
  a826de4cd699facdb10505c8d39f8163ea183af9f79157c6edf48a80fd9788d58e3daeba4fd0a659ad1e45a9b72c74593e7bb87724c7a1a34c592bc842970bc3
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkdtR:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2