7237036abf84ade6cf0685d0432c585904346f2befe6e5ee211c1365bc3c001e | Triage

Sharing

General

Target

2024-11-21_978e57cc7ccf0f89f5ad2991b9326531_cryptolocker
Size

46KB
Sample

241121-hntj3sygnf
MD5

978e57cc7ccf0f89f5ad2991b9326531
SHA1

e5e369406bdbb37502c6826af8c06315671c1247
SHA256

7237036abf84ade6cf0685d0432c585904346f2befe6e5ee211c1365bc3c001e
SHA512

32c007a0978fd341ba228553a54a412021b136859e5e14dd7e8cc01c7fada596c650f46d0be1eeae61da052a51ee1609d19e693f54bb1dd3d895ea6148e65807
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk30:bm74zYcgT/EkM0ryfjd30

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_978e57cc7ccf0f89f5ad2991b9326531_cryptolocker
- Size
  
  46KB
- MD5
  
  978e57cc7ccf0f89f5ad2991b9326531
- SHA1
  
  e5e369406bdbb37502c6826af8c06315671c1247
- SHA256
  
  7237036abf84ade6cf0685d0432c585904346f2befe6e5ee211c1365bc3c001e
- SHA512
  
  32c007a0978fd341ba228553a54a412021b136859e5e14dd7e8cc01c7fada596c650f46d0be1eeae61da052a51ee1609d19e693f54bb1dd3d895ea6148e65807
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk30:bm74zYcgT/EkM0ryfjd30
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2