d0e2b9ccfd93fd96ea3f0abe9f89de1f5f90927cab13f4038d179d18a82c4533 | Triage

Sharing

General

Target

e92932147dfe4ddd496255eb28e580ad_cryptolocker_JC.exe
Size

38KB
Sample

230830-wyafvagh31
MD5

e92932147dfe4ddd496255eb28e580ad
SHA1

6fb2d2b1890a3a893d6a7122b59b5a15ac538fda
SHA256

d0e2b9ccfd93fd96ea3f0abe9f89de1f5f90927cab13f4038d179d18a82c4533
SHA512

6c0d1e0066ccb50c6bdef7e2c5c8108e9eee38cfa4fd4ccbed1d5628ea34db919ea9510cdaaee44d33d55e7bbff5d1b28cd097c5ece1a61ffa3458c1d7cf2250
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B94IOMHo3sxP1TW:btB9g/WItCSsAGjX7r3BPOMHoc/QQJU

Score

7^/10

Malware Config

Targets

- Target
  
  e92932147dfe4ddd496255eb28e580ad_cryptolocker_JC.exe
- Size
  
  38KB
- MD5
  
  e92932147dfe4ddd496255eb28e580ad
- SHA1
  
  6fb2d2b1890a3a893d6a7122b59b5a15ac538fda
- SHA256
  
  d0e2b9ccfd93fd96ea3f0abe9f89de1f5f90927cab13f4038d179d18a82c4533
- SHA512
  
  6c0d1e0066ccb50c6bdef7e2c5c8108e9eee38cfa4fd4ccbed1d5628ea34db919ea9510cdaaee44d33d55e7bbff5d1b28cd097c5ece1a61ffa3458c1d7cf2250
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B94IOMHo3sxP1TW:btB9g/WItCSsAGjX7r3BPOMHoc/QQJU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2