9e1ebb6fd1395fce63cc31b46b3ecd77a68b2ab2241f9fc8df1a84f537307055 | Triage

Sharing

General

Target

2024-12-21_4d81765bbe12e037c3ebcaff3c24aa7a_cryptolocker
Size

42KB
Sample

241221-sdyq6a1rdq
MD5

4d81765bbe12e037c3ebcaff3c24aa7a
SHA1

a83cb43a07a29ea2c56d440936101c65ad577cff
SHA256

9e1ebb6fd1395fce63cc31b46b3ecd77a68b2ab2241f9fc8df1a84f537307055
SHA512

1e3bfc9d67632c52da86fe0549cde90263e60af71f992127b82333ae6d4dc9e4d63d1cdbf811c4dd573f64c05a902f6a88af5ac6a51170821ae24f981d68d80f
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqZM0:bxNrC7kYo1Fxf3s05rwxbF2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-12-21_4d81765bbe12e037c3ebcaff3c24aa7a_cryptolocker
- Size
  
  42KB
- MD5
  
  4d81765bbe12e037c3ebcaff3c24aa7a
- SHA1
  
  a83cb43a07a29ea2c56d440936101c65ad577cff
- SHA256
  
  9e1ebb6fd1395fce63cc31b46b3ecd77a68b2ab2241f9fc8df1a84f537307055
- SHA512
  
  1e3bfc9d67632c52da86fe0549cde90263e60af71f992127b82333ae6d4dc9e4d63d1cdbf811c4dd573f64c05a902f6a88af5ac6a51170821ae24f981d68d80f
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqZM0:bxNrC7kYo1Fxf3s05rwxbF2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2