0cceab7804d34d40937c87de9c3fe388c66a8ce93481d17e875c256d5ea33448 | Triage

Sharing

General

Target

20240521d92e8e655c232ad32dfea45c97ef90c7cryptolocker.exe
Size

51KB
Sample

240522-xwes8adb8t
MD5

d92e8e655c232ad32dfea45c97ef90c7
SHA1

99c58ecc55dbda84a684e5a9e68b3713f854beea
SHA256

0cceab7804d34d40937c87de9c3fe388c66a8ce93481d17e875c256d5ea33448
SHA512

14f64886841199d73f3a77f055c0b1ef04056b3fcd31974d4b5ac95cf2dafd0ac591af75c969ae0b242e21fb5ee3dd4460fe2390f739e241d4b68736a37a81ba
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZYyl:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLiu

Score

7^/10

Malware Config

Targets

- Target
  
  20240521d92e8e655c232ad32dfea45c97ef90c7cryptolocker.exe
- Size
  
  51KB
- MD5
  
  d92e8e655c232ad32dfea45c97ef90c7
- SHA1
  
  99c58ecc55dbda84a684e5a9e68b3713f854beea
- SHA256
  
  0cceab7804d34d40937c87de9c3fe388c66a8ce93481d17e875c256d5ea33448
- SHA512
  
  14f64886841199d73f3a77f055c0b1ef04056b3fcd31974d4b5ac95cf2dafd0ac591af75c969ae0b242e21fb5ee3dd4460fe2390f739e241d4b68736a37a81ba
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZYyl:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLiu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2