6f1c6e20e78ab644cc6c0593586f52623212a1e170a9cc8ed7e0ba547f6b105d | Triage

Sharing

General

Target

20240526e64d721ee29b0c9f913c86e0e9082948cryptolocker
Size

97KB
Sample

240527-fxl59aac76
MD5

e64d721ee29b0c9f913c86e0e9082948
SHA1

893811ce963783c46e168cfc931fa94e088a6ca0
SHA256

6f1c6e20e78ab644cc6c0593586f52623212a1e170a9cc8ed7e0ba547f6b105d
SHA512

e3e7a6c39beafb245953c70896b90504845d5fcb9e0e310908429232eef14af587f387d431660b158425c8b04204a3298f31badb8986b4d51a7235cc69c28b57
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgRZ:V6a+pOtEvwDpjtzT

Score

7^/10

Malware Config

Targets

- Target
  
  20240526e64d721ee29b0c9f913c86e0e9082948cryptolocker
- Size
  
  97KB
- MD5
  
  e64d721ee29b0c9f913c86e0e9082948
- SHA1
  
  893811ce963783c46e168cfc931fa94e088a6ca0
- SHA256
  
  6f1c6e20e78ab644cc6c0593586f52623212a1e170a9cc8ed7e0ba547f6b105d
- SHA512
  
  e3e7a6c39beafb245953c70896b90504845d5fcb9e0e310908429232eef14af587f387d431660b158425c8b04204a3298f31badb8986b4d51a7235cc69c28b57
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgRZ:V6a+pOtEvwDpjtzT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2