77a39f97de8dd08ee81229f9f5d3a062306588527f0092d20c3a0eabf004e354 | Triage

Sharing

General

Target

2024-11-21_61dd893d969bbe75545def9149d66da9_cryptolocker
Size

79KB
Sample

241121-hkydvstqan
MD5

61dd893d969bbe75545def9149d66da9
SHA1

7637f9cc945b49dc0fbeb3c38003511a51292a8f
SHA256

77a39f97de8dd08ee81229f9f5d3a062306588527f0092d20c3a0eabf004e354
SHA512

17afa9514fe48185c29be2b7b897aebee933460a0533611515291544988acd4426d47e5b246a6a8e312e914f0f0a4fe4df5d2f837cef6a1038d4aaee23d79c76
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktd:X6a+SOtEvwDpjBZYvQd2g

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_61dd893d969bbe75545def9149d66da9_cryptolocker
- Size
  
  79KB
- MD5
  
  61dd893d969bbe75545def9149d66da9
- SHA1
  
  7637f9cc945b49dc0fbeb3c38003511a51292a8f
- SHA256
  
  77a39f97de8dd08ee81229f9f5d3a062306588527f0092d20c3a0eabf004e354
- SHA512
  
  17afa9514fe48185c29be2b7b897aebee933460a0533611515291544988acd4426d47e5b246a6a8e312e914f0f0a4fe4df5d2f837cef6a1038d4aaee23d79c76
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktd:X6a+SOtEvwDpjBZYvQd2g
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2