b365f068c232e48ec7fc4546689668c860052d8e8ff1f4e8e71bb4fc07c7a4b4 | Triage

Sharing

General

Target

2023-08-22_ececf3cf18d5e5d755687a199c0f68a6_cryptolocker_JC.exe
Size

30KB
Sample

230903-rc1zfsad4z
MD5

ececf3cf18d5e5d755687a199c0f68a6
SHA1

3861375b87d668cad78e4a2c0b5aa69cc8d1456a
SHA256

b365f068c232e48ec7fc4546689668c860052d8e8ff1f4e8e71bb4fc07c7a4b4
SHA512

c2cedad02c0d3ebe64bb939df3327fffe182a6693bdb11e010ddfc1c90ae7a8e418c3ff63199dda96e8a3cb4e7b490bc5d83760acab7dd3dac1bba31afcee835
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNd:btB9g/WItCSsAGjX7e9Nd

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-22_ececf3cf18d5e5d755687a199c0f68a6_cryptolocker_JC.exe
- Size
  
  30KB
- MD5
  
  ececf3cf18d5e5d755687a199c0f68a6
- SHA1
  
  3861375b87d668cad78e4a2c0b5aa69cc8d1456a
- SHA256
  
  b365f068c232e48ec7fc4546689668c860052d8e8ff1f4e8e71bb4fc07c7a4b4
- SHA512
  
  c2cedad02c0d3ebe64bb939df3327fffe182a6693bdb11e010ddfc1c90ae7a8e418c3ff63199dda96e8a3cb4e7b490bc5d83760acab7dd3dac1bba31afcee835
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNd:btB9g/WItCSsAGjX7e9Nd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2