733e72726e38784e692da7f2f01a333206d0fcc5b46658918a637f3a09940658 | Triage

Sharing

General

Target

2024-12-21_a556c25fea55aa6b2b46c7f9c6314c8f_cryptolocker
Size

42KB
Sample

241221-sd24ks1rej
MD5

a556c25fea55aa6b2b46c7f9c6314c8f
SHA1

2635e78a34b31d1280389363fd2773dcd999b5db
SHA256

733e72726e38784e692da7f2f01a333206d0fcc5b46658918a637f3a09940658
SHA512

d35cb0d759b2c438f4f81ffc246958ef87ab53790499cb7549120d86b27e451c4a7bc2f3c4c8256d5fd70797b800877ba6613101b25e86751116f2ca3e8a4fc1
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqZMY:bxNrC7kYo1Fxf3s05rwxbFy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-12-21_a556c25fea55aa6b2b46c7f9c6314c8f_cryptolocker
- Size
  
  42KB
- MD5
  
  a556c25fea55aa6b2b46c7f9c6314c8f
- SHA1
  
  2635e78a34b31d1280389363fd2773dcd999b5db
- SHA256
  
  733e72726e38784e692da7f2f01a333206d0fcc5b46658918a637f3a09940658
- SHA512
  
  d35cb0d759b2c438f4f81ffc246958ef87ab53790499cb7549120d86b27e451c4a7bc2f3c4c8256d5fd70797b800877ba6613101b25e86751116f2ca3e8a4fc1
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqZMY:bxNrC7kYo1Fxf3s05rwxbFy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2