88d6fc94e159061730cca81a0f87249a8c3fb358963e2f242731940174c3532f | Triage

Sharing

General

Target

2024-11-21_651053fbe9d0d3a30bf0cbc0220dc349_cryptolocker
Size

51KB
Sample

241121-hlc5bazgjl
MD5

651053fbe9d0d3a30bf0cbc0220dc349
SHA1

7b64e340bc4ec3fdab75ee5d91d79c6c9ed4d1a1
SHA256

88d6fc94e159061730cca81a0f87249a8c3fb358963e2f242731940174c3532f
SHA512

ee8a3528a3587fc3c2273090b96891ca489ffde4d0ebb85694d973faf9e3987d947688adace824c8bcc5ea846f626e80387d8b49d197cffd24e219408d768a75
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9Gx:bIDOw9a0DwitDZzn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_651053fbe9d0d3a30bf0cbc0220dc349_cryptolocker
- Size
  
  51KB
- MD5
  
  651053fbe9d0d3a30bf0cbc0220dc349
- SHA1
  
  7b64e340bc4ec3fdab75ee5d91d79c6c9ed4d1a1
- SHA256
  
  88d6fc94e159061730cca81a0f87249a8c3fb358963e2f242731940174c3532f
- SHA512
  
  ee8a3528a3587fc3c2273090b96891ca489ffde4d0ebb85694d973faf9e3987d947688adace824c8bcc5ea846f626e80387d8b49d197cffd24e219408d768a75
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9Gx:bIDOw9a0DwitDZzn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2