caeadafd3a865cd8e076a6da658e7c5c02ac397ed586264c2939eca865d3dafb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

202404145a632334e66b6682da0b2720b5435c11cryptolocker.exe
Size

40KB
Sample

240415-vygdqaeb2v
MD5

5a632334e66b6682da0b2720b5435c11
SHA1

f19744389dd978a5ad51f396af4eeaa7f0f6c097
SHA256

caeadafd3a865cd8e076a6da658e7c5c02ac397ed586264c2939eca865d3dafb
SHA512

11f605784a5d452fbea87225dc7e993f53ad65f18a0b3a22ed77e9c8ff1ca6c483600400d047be29d2c8b976b26aac20d0f5ae0b3f6210d8aebadcd1382e1e01
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF5:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLX

Score

7^/10

Malware Config

Targets

- Target
  
  202404145a632334e66b6682da0b2720b5435c11cryptolocker.exe
- Size
  
  40KB
- MD5
  
  5a632334e66b6682da0b2720b5435c11
- SHA1
  
  f19744389dd978a5ad51f396af4eeaa7f0f6c097
- SHA256
  
  caeadafd3a865cd8e076a6da658e7c5c02ac397ed586264c2939eca865d3dafb
- SHA512
  
  11f605784a5d452fbea87225dc7e993f53ad65f18a0b3a22ed77e9c8ff1ca6c483600400d047be29d2c8b976b26aac20d0f5ae0b3f6210d8aebadcd1382e1e01
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF5:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2