504926de3e7c4ea15f474c43f5e01ec73a5bb18e5c9337cc92a577d541a0c849 | Triage

Sharing

General

Target

2023-08-27_2eefb2b207976c5a37f9e135408fd83c_cryptolocker_JC.exe
Size

62KB
Sample

231002-vdsk9ach5z
MD5

2eefb2b207976c5a37f9e135408fd83c
SHA1

aab5b015e74ddb77438cafbfdea2d4b70f4c5fce
SHA256

504926de3e7c4ea15f474c43f5e01ec73a5bb18e5c9337cc92a577d541a0c849
SHA512

7ac9372b883e92afa1178c259950dc0705a308279bdb0eab680a5fc12aab6ed0dd2ee7752ccc9fc886922961d66004b22af3bf89facef52d4a3cceb3a7865da1
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293X2I:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7f

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-27_2eefb2b207976c5a37f9e135408fd83c_cryptolocker_JC.exe
- Size
  
  62KB
- MD5
  
  2eefb2b207976c5a37f9e135408fd83c
- SHA1
  
  aab5b015e74ddb77438cafbfdea2d4b70f4c5fce
- SHA256
  
  504926de3e7c4ea15f474c43f5e01ec73a5bb18e5c9337cc92a577d541a0c849
- SHA512
  
  7ac9372b883e92afa1178c259950dc0705a308279bdb0eab680a5fc12aab6ed0dd2ee7752ccc9fc886922961d66004b22af3bf89facef52d4a3cceb3a7865da1
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293X2I:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7f
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2