d7bbb6b0b831a8751e97dc54e64a89f178c0a00fdfb60eb638b0f7ba1bf73246 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_d265fcacf09efb4912fea47ccafedae6_cryptolocker_JC.exe
Size

42KB
Sample

231011-fhspgscg44
MD5

d265fcacf09efb4912fea47ccafedae6
SHA1

6950c1af2f25a0e71efa9f020db256597c5f40fc
SHA256

d7bbb6b0b831a8751e97dc54e64a89f178c0a00fdfb60eb638b0f7ba1bf73246
SHA512

eaecd4178c92e8ee294321aad55934b8331e454df6157fc27b2011bb5625ad61853ac1eb8051e84b56130af95e52b3298a68b47e677b2769e0c3072da4d34c50
SSDEEP

768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05IP:qmbhXDmjr5MOtEvwDpj5cDtKkQZQIP

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-26_d265fcacf09efb4912fea47ccafedae6_cryptolocker_JC.exe
- Size
  
  42KB
- MD5
  
  d265fcacf09efb4912fea47ccafedae6
- SHA1
  
  6950c1af2f25a0e71efa9f020db256597c5f40fc
- SHA256
  
  d7bbb6b0b831a8751e97dc54e64a89f178c0a00fdfb60eb638b0f7ba1bf73246
- SHA512
  
  eaecd4178c92e8ee294321aad55934b8331e454df6157fc27b2011bb5625ad61853ac1eb8051e84b56130af95e52b3298a68b47e677b2769e0c3072da4d34c50
- SSDEEP
  
  768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05IP:qmbhXDmjr5MOtEvwDpj5cDtKkQZQIP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2