77f88065c8aa00d01314d138dc1e7c147a0151a74e879c34cc72c92ba4066d66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

202405315f3727e34a9a888256d0492738cac4b3cryptolocker
Size

54KB
Sample

240531-qmapksaa71
MD5

5f3727e34a9a888256d0492738cac4b3
SHA1

36a47645893fc55ff53b280d681a2a04d029c766
SHA256

77f88065c8aa00d01314d138dc1e7c147a0151a74e879c34cc72c92ba4066d66
SHA512

7bbf7c54a8e7769ef4e4b0c801cfe25fe3f3af5953b2822502781be4298eacdded08543731462aec75ef4a1914108bdb9e62d18041093e43c00defb2da1d08d8
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPs6:V6a+pOtEvwDpjG

Score

7^/10

Malware Config

Targets

- Target
  
  202405315f3727e34a9a888256d0492738cac4b3cryptolocker
- Size
  
  54KB
- MD5
  
  5f3727e34a9a888256d0492738cac4b3
- SHA1
  
  36a47645893fc55ff53b280d681a2a04d029c766
- SHA256
  
  77f88065c8aa00d01314d138dc1e7c147a0151a74e879c34cc72c92ba4066d66
- SHA512
  
  7bbf7c54a8e7769ef4e4b0c801cfe25fe3f3af5953b2822502781be4298eacdded08543731462aec75ef4a1914108bdb9e62d18041093e43c00defb2da1d08d8
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPs6:V6a+pOtEvwDpjG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2