6b35fe841341911ce8115ea2bdcfb2010140f77ae4679deedf480490da3285a3 | Triage

Sharing

General

Target

202405203a22b2ec2cc790cee1f58e707840b9cdcryptolocker_NeikiAnalytics
Size

40KB
Sample

240521-j1as6sdh95
MD5

3a22b2ec2cc790cee1f58e707840b9cd
SHA1

6bcee4b47cef4f75ebe7cc174a91c3cd3a1b89a9
SHA256

6b35fe841341911ce8115ea2bdcfb2010140f77ae4679deedf480490da3285a3
SHA512

c1aa768184307b81e96c6ca69182c35d91cc127e8509d6079b160e4abb34dbd1aa4ccbf96432172f5f138faa2f4dcc02c44bb507c0b7a36bcd626cbfbca453e7
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKzH15U/EyC8:btB9g/WItCSsAGjX7e9N0hunKLYNC8

Score

7^/10

Malware Config

Targets

- Target
  
  202405203a22b2ec2cc790cee1f58e707840b9cdcryptolocker_NeikiAnalytics
- Size
  
  40KB
- MD5
  
  3a22b2ec2cc790cee1f58e707840b9cd
- SHA1
  
  6bcee4b47cef4f75ebe7cc174a91c3cd3a1b89a9
- SHA256
  
  6b35fe841341911ce8115ea2bdcfb2010140f77ae4679deedf480490da3285a3
- SHA512
  
  c1aa768184307b81e96c6ca69182c35d91cc127e8509d6079b160e4abb34dbd1aa4ccbf96432172f5f138faa2f4dcc02c44bb507c0b7a36bcd626cbfbca453e7
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKzH15U/EyC8:btB9g/WItCSsAGjX7e9N0hunKLYNC8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2