b509804f3e3aae361b1ef58871380dea3fbd941adb23b50eba98b431dfe0958a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20240521e09f161867cfee34a6e77462c8304e4ecryptolocker
Size

47KB
Sample

240522-gc4egadh3s
MD5

e09f161867cfee34a6e77462c8304e4e
SHA1

c6c345d2546387d3d4bdf92360dc0795caadccd8
SHA256

b509804f3e3aae361b1ef58871380dea3fbd941adb23b50eba98b431dfe0958a
SHA512

5aaa4967c38fd116ac98107dd806c9f888cec9c1fff112bbfd92aa9edec9b5dc51af49969ff3840eeb4f8f2ea02c70bfdf704a4a883bd4140d915578904d8678
SSDEEP

768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcL:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfL

Score

7^/10

Malware Config

Targets

- Target
  
  20240521e09f161867cfee34a6e77462c8304e4ecryptolocker
- Size
  
  47KB
- MD5
  
  e09f161867cfee34a6e77462c8304e4e
- SHA1
  
  c6c345d2546387d3d4bdf92360dc0795caadccd8
- SHA256
  
  b509804f3e3aae361b1ef58871380dea3fbd941adb23b50eba98b431dfe0958a
- SHA512
  
  5aaa4967c38fd116ac98107dd806c9f888cec9c1fff112bbfd92aa9edec9b5dc51af49969ff3840eeb4f8f2ea02c70bfdf704a4a883bd4140d915578904d8678
- SSDEEP
  
  768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcL:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2