411d438bcd2392037a1b6106090f743c915fd43cac8f208a86cde48e4ca8eb9e | Triage

Sharing

General

Target

2023-08-26_aea75ed67cae501983cd5699ba176500_cryptolocker_JC.exe
Size

40KB
Sample

231011-gkd5jscg6w
MD5

aea75ed67cae501983cd5699ba176500
SHA1

ae27495ab91a281036763868e16d23d8ef223f8d
SHA256

411d438bcd2392037a1b6106090f743c915fd43cac8f208a86cde48e4ca8eb9e
SHA512

a6049acc0525cc3c600d892eadbffe9b235216ea86693f8c101e48648560f25e1b98cdd589fa0a5a4196285ebcfc56cedb3ec64833f2db2e2682239b3d7d3daa
SSDEEP

768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbD7:bgGYcA/53GAA6y37a

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-26_aea75ed67cae501983cd5699ba176500_cryptolocker_JC.exe
- Size
  
  40KB
- MD5
  
  aea75ed67cae501983cd5699ba176500
- SHA1
  
  ae27495ab91a281036763868e16d23d8ef223f8d
- SHA256
  
  411d438bcd2392037a1b6106090f743c915fd43cac8f208a86cde48e4ca8eb9e
- SHA512
  
  a6049acc0525cc3c600d892eadbffe9b235216ea86693f8c101e48648560f25e1b98cdd589fa0a5a4196285ebcfc56cedb3ec64833f2db2e2682239b3d7d3daa
- SSDEEP
  
  768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbD7:bgGYcA/53GAA6y37a
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2