9944585947069221140fa8e97965db1a0838c94b23bc79f656b6fadfcf432d01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2025-05-10_4ddac833126f11571bc7e677368a171b_cryptolocker_elex
Size

56KB
Sample

250510-g9zgsaak4z
MD5

4ddac833126f11571bc7e677368a171b
SHA1

8e1e358df189f0897e8f4618d9c9574521dc1c19
SHA256

9944585947069221140fa8e97965db1a0838c94b23bc79f656b6fadfcf432d01
SHA512

b7a6ba5aac4b59645f3c2235a256e34734f579ad18b0101aad195553fd77d110451e1dbf5704b43b46938542dd50d8311b25feca0e474fcb3e5688e4d6cf1008
SSDEEP

768:br74zYcgT/Ekd0ryfjXaoP+NSBz1EXEl5EyKaIZsIunqpeNswml:br6YcA/X6GLadNSBBSm5zI/W1M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2025-05-10_4ddac833126f11571bc7e677368a171b_cryptolocker_elex
- Size
  
  56KB
- MD5
  
  4ddac833126f11571bc7e677368a171b
- SHA1
  
  8e1e358df189f0897e8f4618d9c9574521dc1c19
- SHA256
  
  9944585947069221140fa8e97965db1a0838c94b23bc79f656b6fadfcf432d01
- SHA512
  
  b7a6ba5aac4b59645f3c2235a256e34734f579ad18b0101aad195553fd77d110451e1dbf5704b43b46938542dd50d8311b25feca0e474fcb3e5688e4d6cf1008
- SSDEEP
  
  768:br74zYcgT/Ekd0ryfjXaoP+NSBz1EXEl5EyKaIZsIunqpeNswml:br6YcA/X6GLadNSBBSm5zI/W1M
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1