fcb145416251f857e1b9c2741c4c97c282d13fd84f24bb400d2974024fabec20 | Triage

Sharing

General

Target

2024-11-21_e91f351852b3ed5bc4d5959bfdd9e2a6_cryptolocker
Size

45KB
Sample

241121-nejams1dqc
MD5

e91f351852b3ed5bc4d5959bfdd9e2a6
SHA1

19dc2039a6ca7596d1f54f79b17069924d6917e2
SHA256

fcb145416251f857e1b9c2741c4c97c282d13fd84f24bb400d2974024fabec20
SHA512

afbea8f1cf4f93503f43fe8eb87cdf6f4a185e8f1efecd1627d9e0b33279ba87507283a9dd9bd0202501306d2ba589a88dff651b288c0fe8a0fedfb0dee9c446
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHt:bCDOw9aMDooc+vAlXt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_e91f351852b3ed5bc4d5959bfdd9e2a6_cryptolocker
- Size
  
  45KB
- MD5
  
  e91f351852b3ed5bc4d5959bfdd9e2a6
- SHA1
  
  19dc2039a6ca7596d1f54f79b17069924d6917e2
- SHA256
  
  fcb145416251f857e1b9c2741c4c97c282d13fd84f24bb400d2974024fabec20
- SHA512
  
  afbea8f1cf4f93503f43fe8eb87cdf6f4a185e8f1efecd1627d9e0b33279ba87507283a9dd9bd0202501306d2ba589a88dff651b288c0fe8a0fedfb0dee9c446
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHt:bCDOw9aMDooc+vAlXt
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2