980790b7e139dc061c614417faedf6e183786d4f1756006d3fb4e68a79829843 | Triage

Sharing

General

Target

20240521a0e4aa88f4b985c73ed06cbda2d39f19cryptolocker.exe
Size

45KB
Sample

240522-xjyesscf9y
MD5

a0e4aa88f4b985c73ed06cbda2d39f19
SHA1

9b646950c27ec6e64fb93eb2169549529c150f5b
SHA256

980790b7e139dc061c614417faedf6e183786d4f1756006d3fb4e68a79829843
SHA512

331cad4890888fe737365a3a884ffa5a3065fb1caf19f4d23d7ca1a3565b78bf6d791fe620a2d78899ddf6b76016656032034a1d4d2dbe34747444a65361ac17
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyu:btB9g/WItCSsAGjX7e9N0hunrknljKrO

Score

7^/10

Malware Config

Targets

- Target
  
  20240521a0e4aa88f4b985c73ed06cbda2d39f19cryptolocker.exe
- Size
  
  45KB
- MD5
  
  a0e4aa88f4b985c73ed06cbda2d39f19
- SHA1
  
  9b646950c27ec6e64fb93eb2169549529c150f5b
- SHA256
  
  980790b7e139dc061c614417faedf6e183786d4f1756006d3fb4e68a79829843
- SHA512
  
  331cad4890888fe737365a3a884ffa5a3065fb1caf19f4d23d7ca1a3565b78bf6d791fe620a2d78899ddf6b76016656032034a1d4d2dbe34747444a65361ac17
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyu:btB9g/WItCSsAGjX7e9N0hunrknljKrO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2