895709a19136278f7d54cc6f4ff3fdd94606b1fa45ff5814f64beba4a8fadb6c | Triage

Sharing

General

Target

2024-11-21_b02f710c6470b040f92d2f8a97c7d708_cryptolocker
Size

51KB
Sample

241121-jhjy5azanc
MD5

b02f710c6470b040f92d2f8a97c7d708
SHA1

f7235f09d764da81a99632876fe8d46a6d6e3ad7
SHA256

895709a19136278f7d54cc6f4ff3fdd94606b1fa45ff5814f64beba4a8fadb6c
SHA512

094c486d9c7c86a3de552bb1c80e60be9305b51242317d9ab296410d460bdbd94e1077f790cc75c7802f0d1fcb60c7f2b8fb8d055a6b3583e02b4fe93ce60b27
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nB:vj+jsMQMOtEvwDpj5HczerLO04B+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_b02f710c6470b040f92d2f8a97c7d708_cryptolocker
- Size
  
  51KB
- MD5
  
  b02f710c6470b040f92d2f8a97c7d708
- SHA1
  
  f7235f09d764da81a99632876fe8d46a6d6e3ad7
- SHA256
  
  895709a19136278f7d54cc6f4ff3fdd94606b1fa45ff5814f64beba4a8fadb6c
- SHA512
  
  094c486d9c7c86a3de552bb1c80e60be9305b51242317d9ab296410d460bdbd94e1077f790cc75c7802f0d1fcb60c7f2b8fb8d055a6b3583e02b4fe93ce60b27
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nB:vj+jsMQMOtEvwDpj5HczerLO04B+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2