437e4b9ac1dbe7e1d3ca0ab4df43fbea32c351af9552e18eb5b74034e83129c9 | Triage

Sharing

General

Target

20240524224a762594e7ba3dda2c6b0b7819fefccryptolocker
Size

57KB
Sample

240525-zznawaae4y
MD5

224a762594e7ba3dda2c6b0b7819fefc
SHA1

e66626652e666390c65bb23acfe91a5d35ae1742
SHA256

437e4b9ac1dbe7e1d3ca0ab4df43fbea32c351af9552e18eb5b74034e83129c9
SHA512

8eef2915cbb2b5b7781a34e539cf356bd1b97b6a7f8a499f93966b2c07a9a366ee075ee4b33a206f7b6efce11fcaa45f26a452f25151538666b27a268cffc584
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFv6dl4G3:vj+jsMQMOtEvwDpj5HH1nw73KOFip

Score

7^/10

Malware Config

Targets

- Target
  
  20240524224a762594e7ba3dda2c6b0b7819fefccryptolocker
- Size
  
  57KB
- MD5
  
  224a762594e7ba3dda2c6b0b7819fefc
- SHA1
  
  e66626652e666390c65bb23acfe91a5d35ae1742
- SHA256
  
  437e4b9ac1dbe7e1d3ca0ab4df43fbea32c351af9552e18eb5b74034e83129c9
- SHA512
  
  8eef2915cbb2b5b7781a34e539cf356bd1b97b6a7f8a499f93966b2c07a9a366ee075ee4b33a206f7b6efce11fcaa45f26a452f25151538666b27a268cffc584
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFv6dl4G3:vj+jsMQMOtEvwDpj5HH1nw73KOFip
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2