05caa489ae72b85855503dc367b626fd6305165f271dfedefc2615c81c8e7076 | Triage

Sharing

General

Target

2024-11-21_d9ea83a8216260bdf38f551897976d91_cryptolocker
Size

75KB
Sample

241121-jm45vsvjdj
MD5

d9ea83a8216260bdf38f551897976d91
SHA1

5a0ee01143e2811b64fc7c1195faed76639e5cde
SHA256

05caa489ae72b85855503dc367b626fd6305165f271dfedefc2615c81c8e7076
SHA512

556ce28cacc60cb6df8c717b4457182a0db18630eb12338d784e263f1a209a7f8a8e10ac27b4b9e08a4bb9f7b07fe9c7458207e2417af0694c907389c6d9ed42
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zMw:9Uj+AIMOtEvwDpjLizbR9Xwz5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_d9ea83a8216260bdf38f551897976d91_cryptolocker
- Size
  
  75KB
- MD5
  
  d9ea83a8216260bdf38f551897976d91
- SHA1
  
  5a0ee01143e2811b64fc7c1195faed76639e5cde
- SHA256
  
  05caa489ae72b85855503dc367b626fd6305165f271dfedefc2615c81c8e7076
- SHA512
  
  556ce28cacc60cb6df8c717b4457182a0db18630eb12338d784e263f1a209a7f8a8e10ac27b4b9e08a4bb9f7b07fe9c7458207e2417af0694c907389c6d9ed42
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9zMw:9Uj+AIMOtEvwDpjLizbR9Xwz5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2