c71df568e3b55260b26b4bf141ae4b24bab0a105aa5c6f30558b1370dc695c0f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2025-05-10_3656e8f51e3540ba8e3c672a86d363c1_cryptolocker_elex
Size

43KB
Sample

250510-g8resavwav
MD5

3656e8f51e3540ba8e3c672a86d363c1
SHA1

9eb90cb6f9f6dc56a975bccc01744d0146cb9f96
SHA256

c71df568e3b55260b26b4bf141ae4b24bab0a105aa5c6f30558b1370dc695c0f
SHA512

ed48648255e1a71e6707bf76e3a6320d99e0976c3ab9f09f07a8a0c0b7f894865b6b1d5d44e19450f34f7db30883bf783ee32d35fb3e3b50048a44e02f39509e
SSDEEP

768:bAvJCYOOvbRPDEgXRc+BA/b35vSse4gEyVxk:bAvJCF+RQgBa56suxVu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2025-05-10_3656e8f51e3540ba8e3c672a86d363c1_cryptolocker_elex
- Size
  
  43KB
- MD5
  
  3656e8f51e3540ba8e3c672a86d363c1
- SHA1
  
  9eb90cb6f9f6dc56a975bccc01744d0146cb9f96
- SHA256
  
  c71df568e3b55260b26b4bf141ae4b24bab0a105aa5c6f30558b1370dc695c0f
- SHA512
  
  ed48648255e1a71e6707bf76e3a6320d99e0976c3ab9f09f07a8a0c0b7f894865b6b1d5d44e19450f34f7db30883bf783ee32d35fb3e3b50048a44e02f39509e
- SSDEEP
  
  768:bAvJCYOOvbRPDEgXRc+BA/b35vSse4gEyVxk:bAvJCF+RQgBa56suxVu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2