d2e51b85cef9136f7e95fbc96e758b6f2ede5c9edb054250bf9a7c8e7e610121 | Triage

Sharing

General

Target

20240521b0c36e3dc472cc5c0106ef5414cf941ecryptolocker.exe
Size

38KB
Sample

240522-x32assde5w
MD5

b0c36e3dc472cc5c0106ef5414cf941e
SHA1

3b626dbdb9953e696957dd6ab8c9d2690b859355
SHA256

d2e51b85cef9136f7e95fbc96e758b6f2ede5c9edb054250bf9a7c8e7e610121
SHA512

b075f9cfa3b25eb84376bc1f5ecc98c1109280b7340075ad5be5a239be8d249e6a1829c941a17f44d854b1bf9b56cddaa04d7ac8eb0802d1863a08683812508a
SSDEEP

384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6A0X/EIjxuaPt:b/yC4GyNM01GuQMNXw2PSjH+PPxVt

Score

7^/10

Malware Config

Targets

- Target
  
  20240521b0c36e3dc472cc5c0106ef5414cf941ecryptolocker.exe
- Size
  
  38KB
- MD5
  
  b0c36e3dc472cc5c0106ef5414cf941e
- SHA1
  
  3b626dbdb9953e696957dd6ab8c9d2690b859355
- SHA256
  
  d2e51b85cef9136f7e95fbc96e758b6f2ede5c9edb054250bf9a7c8e7e610121
- SHA512
  
  b075f9cfa3b25eb84376bc1f5ecc98c1109280b7340075ad5be5a239be8d249e6a1829c941a17f44d854b1bf9b56cddaa04d7ac8eb0802d1863a08683812508a
- SSDEEP
  
  384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6A0X/EIjxuaPt:b/yC4GyNM01GuQMNXw2PSjH+PPxVt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2