296740b42132aaadcc005457a1be28695e13c0a83e2563383fee0bb8d4b9e58f | Triage

Sharing

General

Target

20240521d5fde12d5e95bb1962660a7866d57745cryptolocker.exe
Size

71KB
Sample

240522-xb48dace22
MD5

d5fde12d5e95bb1962660a7866d57745
SHA1

9db70740561db0cee23613cac13fb856a3ffba8e
SHA256

296740b42132aaadcc005457a1be28695e13c0a83e2563383fee0bb8d4b9e58f
SHA512

6e4624a8772ab2846f3855ac0f7fde1c5fd01d685dd8d8f5a29f49b0aa15e2be0e1be98e8eb01179e0df444aa6106614b7caed99f85b56fff72cf792086cc834
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Re:vj+jsMQMOtEvwDpj5HZYTjipvF242

Score

7^/10

Malware Config

Targets

- Target
  
  20240521d5fde12d5e95bb1962660a7866d57745cryptolocker.exe
- Size
  
  71KB
- MD5
  
  d5fde12d5e95bb1962660a7866d57745
- SHA1
  
  9db70740561db0cee23613cac13fb856a3ffba8e
- SHA256
  
  296740b42132aaadcc005457a1be28695e13c0a83e2563383fee0bb8d4b9e58f
- SHA512
  
  6e4624a8772ab2846f3855ac0f7fde1c5fd01d685dd8d8f5a29f49b0aa15e2be0e1be98e8eb01179e0df444aa6106614b7caed99f85b56fff72cf792086cc834
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Re:vj+jsMQMOtEvwDpj5HZYTjipvF242
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2