948191542dbd65009761084de65bb566fa4a69140e579e8275fe624a94778cd2 | Triage

Sharing

General

Target

2025-04-12_0ba0bbf424b8c5ec4154fb07183ffaf0_cryptolocker_elex
Size

43KB
Sample

250412-3y6bvatpv2
MD5

0ba0bbf424b8c5ec4154fb07183ffaf0
SHA1

6904e9b4bf9677da51a3a205cb9722716e2819a2
SHA256

948191542dbd65009761084de65bb566fa4a69140e579e8275fe624a94778cd2
SHA512

f6405ccc2a33ad676ff822d09e3ca4a1fb24891f5ec32c15470dd1037b1aa2f151d6587676400f71dc210add950970e4da808f8a8711362542d7019c95aec0e3
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WW:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDF5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2025-04-12_0ba0bbf424b8c5ec4154fb07183ffaf0_cryptolocker_elex
- Size
  
  43KB
- MD5
  
  0ba0bbf424b8c5ec4154fb07183ffaf0
- SHA1
  
  6904e9b4bf9677da51a3a205cb9722716e2819a2
- SHA256
  
  948191542dbd65009761084de65bb566fa4a69140e579e8275fe624a94778cd2
- SHA512
  
  f6405ccc2a33ad676ff822d09e3ca4a1fb24891f5ec32c15470dd1037b1aa2f151d6587676400f71dc210add950970e4da808f8a8711362542d7019c95aec0e3
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WW:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDF5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1