0d32ffb919200d0a0d63e8039df92c2bdc012ba73b144cbb4fab84f24ad1b469 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-27_77bea6adc1b461041ead866d65b70b45_cryptolocker_JC.exe
Size

33KB
Sample

231005-shdxjsdg72
MD5

77bea6adc1b461041ead866d65b70b45
SHA1

9290a41b463e1b81b3f6083593ea601db08bbf08
SHA256

0d32ffb919200d0a0d63e8039df92c2bdc012ba73b144cbb4fab84f24ad1b469
SHA512

16d4f364599bea855391db5cdaee6dc329ad481363092bc2e61c2f87b02e637bc00404ba0bb2a86c80f07f004c740cef997be7b9e135df6a924f2de15e66951a
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qp:btB9g/WItCSsAGjX7r3BTp

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-27_77bea6adc1b461041ead866d65b70b45_cryptolocker_JC.exe
- Size
  
  33KB
- MD5
  
  77bea6adc1b461041ead866d65b70b45
- SHA1
  
  9290a41b463e1b81b3f6083593ea601db08bbf08
- SHA256
  
  0d32ffb919200d0a0d63e8039df92c2bdc012ba73b144cbb4fab84f24ad1b469
- SHA512
  
  16d4f364599bea855391db5cdaee6dc329ad481363092bc2e61c2f87b02e637bc00404ba0bb2a86c80f07f004c740cef997be7b9e135df6a924f2de15e66951a
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qp:btB9g/WItCSsAGjX7r3BTp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2