3b134bdf7f4042cd920b906f85b14a26a8aad1902349a784858e5d3de3723da6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024052424791237e441ce0d7038c13bd034af59cryptolocker.exe
Size

37KB
Sample

240525-zzrcjaae5t
MD5

24791237e441ce0d7038c13bd034af59
SHA1

e316e510d3dd40bbd2f830e3fd991a6f3a82498e
SHA256

3b134bdf7f4042cd920b906f85b14a26a8aad1902349a784858e5d3de3723da6
SHA512

88a879cd564a8d4473832b97064b4882bf28e589cc61fd153a05a22e8f14e1f0d0e8b7dc092a96dadd759d7f320ad4361ceb5e91d6667e4cf3300c0eee3f4d8f
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4El:fT+hsMQMOtEvwDpjoIHa

Score

7^/10

Malware Config

Targets

- Target
  
  2024052424791237e441ce0d7038c13bd034af59cryptolocker.exe
- Size
  
  37KB
- MD5
  
  24791237e441ce0d7038c13bd034af59
- SHA1
  
  e316e510d3dd40bbd2f830e3fd991a6f3a82498e
- SHA256
  
  3b134bdf7f4042cd920b906f85b14a26a8aad1902349a784858e5d3de3723da6
- SHA512
  
  88a879cd564a8d4473832b97064b4882bf28e589cc61fd153a05a22e8f14e1f0d0e8b7dc092a96dadd759d7f320ad4361ceb5e91d6667e4cf3300c0eee3f4d8f
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4El:fT+hsMQMOtEvwDpjoIHa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2