ce5115550ef61d24cb5b2fe1101e042712b986e136b0a52736ef372534968edc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-20_5084321f16af871e87c80a17d525bf8a_cryptolocker
Size

42KB
Sample

240620-cz5htsybrq
MD5

5084321f16af871e87c80a17d525bf8a
SHA1

8b64958eff3b0ad9d6e32bccd26cbf9cedb171c9
SHA256

ce5115550ef61d24cb5b2fe1101e042712b986e136b0a52736ef372534968edc
SHA512

d349719dd7bf583e1081fae4a8a6554745bb35d999b7d85a175ae8ba0d76681a323fc021367a44cd3ded96a63182bc6fc4a3c248477468ec755f88275357a8ef
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95w:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFq

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-20_5084321f16af871e87c80a17d525bf8a_cryptolocker
- Size
  
  42KB
- MD5
  
  5084321f16af871e87c80a17d525bf8a
- SHA1
  
  8b64958eff3b0ad9d6e32bccd26cbf9cedb171c9
- SHA256
  
  ce5115550ef61d24cb5b2fe1101e042712b986e136b0a52736ef372534968edc
- SHA512
  
  d349719dd7bf583e1081fae4a8a6554745bb35d999b7d85a175ae8ba0d76681a323fc021367a44cd3ded96a63182bc6fc4a3c248477468ec755f88275357a8ef
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95w:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2