4b4a95141bb89d4ce4436dcd0363955af9006a322e50023898e1965743edd10b | Triage

Sharing

General

Target

20240521797e53d58f0cf2ec486ed37cab9564ffcryptolocker.exe
Size

57KB
Sample

240522-xwl8asdb9s
MD5

797e53d58f0cf2ec486ed37cab9564ff
SHA1

3c1e7546abb81710ce3faa8acacc857f3509c0ca
SHA256

4b4a95141bb89d4ce4436dcd0363955af9006a322e50023898e1965743edd10b
SHA512

35f1b87ca650a52427fbf225d07e8acfd929a300ec035f09ec06fbf5718ca553e91d64d509b03270a229a87bb349263efce68f846db9bed11bde2f6ed1540f13
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e4O:6j+1NMOtEvwDpjr8oxExe4O

Score

7^/10

Malware Config

Targets

- Target
  
  20240521797e53d58f0cf2ec486ed37cab9564ffcryptolocker.exe
- Size
  
  57KB
- MD5
  
  797e53d58f0cf2ec486ed37cab9564ff
- SHA1
  
  3c1e7546abb81710ce3faa8acacc857f3509c0ca
- SHA256
  
  4b4a95141bb89d4ce4436dcd0363955af9006a322e50023898e1965743edd10b
- SHA512
  
  35f1b87ca650a52427fbf225d07e8acfd929a300ec035f09ec06fbf5718ca553e91d64d509b03270a229a87bb349263efce68f846db9bed11bde2f6ed1540f13
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e4O:6j+1NMOtEvwDpjr8oxExe4O
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2