6d1a90584f75ad0c94c6dc12d6756096ea4b115730f6e74c2356d4c4caa96a86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_82b58a21884740894c30841e849c3e3f_cryptolocker_JC.exe
Size

48KB
Sample

231011-qqv5paaa7s
MD5

82b58a21884740894c30841e849c3e3f
SHA1

ecf28487404b3952f57e6423fa60323115e6172d
SHA256

6d1a90584f75ad0c94c6dc12d6756096ea4b115730f6e74c2356d4c4caa96a86
SHA512

4e206b86269fbf5ef427b1aa5c619808ccae6950f32bab10825a80beeacfa5671d7952e3dbb015937c25fcf21850ae1a3af1cc28780261e09bed1f8ba2e7cebc
SSDEEP

1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impz:BbdDmjr+OtEvwDpjMR

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-26_82b58a21884740894c30841e849c3e3f_cryptolocker_JC.exe
- Size
  
  48KB
- MD5
  
  82b58a21884740894c30841e849c3e3f
- SHA1
  
  ecf28487404b3952f57e6423fa60323115e6172d
- SHA256
  
  6d1a90584f75ad0c94c6dc12d6756096ea4b115730f6e74c2356d4c4caa96a86
- SHA512
  
  4e206b86269fbf5ef427b1aa5c619808ccae6950f32bab10825a80beeacfa5671d7952e3dbb015937c25fcf21850ae1a3af1cc28780261e09bed1f8ba2e7cebc
- SSDEEP
  
  1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impz:BbdDmjr+OtEvwDpjMR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2