7ebfd701cfa4523e2d0cef630a493f6c9c7db3caf840579ca0128fba38a0e66c | Triage

Sharing

General

Target

2024-11-21_ffb303be474ce23737c22aedcecc0758_cryptolocker
Size

79KB
Sample

241121-ns6cbswnbm
MD5

ffb303be474ce23737c22aedcecc0758
SHA1

35030db167027f918441d0c1bf05970e44b6922a
SHA256

7ebfd701cfa4523e2d0cef630a493f6c9c7db3caf840579ca0128fba38a0e66c
SHA512

2f0f89d09a2b733f60ad0b018d78a3ed4a4da71f3dd4eefa5eb55e7cd4e108f156d342d9c0a61ad9d46252b44192ec15b9e5ee4875e6e2b145901f272f454997
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktk:X6a+SOtEvwDpjBZYvQd2p

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-21_ffb303be474ce23737c22aedcecc0758_cryptolocker
- Size
  
  79KB
- MD5
  
  ffb303be474ce23737c22aedcecc0758
- SHA1
  
  35030db167027f918441d0c1bf05970e44b6922a
- SHA256
  
  7ebfd701cfa4523e2d0cef630a493f6c9c7db3caf840579ca0128fba38a0e66c
- SHA512
  
  2f0f89d09a2b733f60ad0b018d78a3ed4a4da71f3dd4eefa5eb55e7cd4e108f156d342d9c0a61ad9d46252b44192ec15b9e5ee4875e6e2b145901f272f454997
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktk:X6a+SOtEvwDpjBZYvQd2p
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2