b6c1deeb63eed31dcfd414f7e647f58da836832ada201826a224e5ac8ae88e17 | Triage

Sharing

General

Target

2023-08-26_3c54f37ba272ac9c403019ff6fda3038_cryptolocker_JC.exe
Size

100KB
Sample

231012-bykxcsga6t
MD5

3c54f37ba272ac9c403019ff6fda3038
SHA1

a18e619124d9c22bb2100329898ac2a8a4f78c9e
SHA256

b6c1deeb63eed31dcfd414f7e647f58da836832ada201826a224e5ac8ae88e17
SHA512

7d597d0db110dd4ea285696b350d508d789d5a65fd145243c6acb7050bd255911b8ffd06cf4049d11a9db7cf83575fed85a3353776707c16811ff2a25ae59164
SSDEEP

1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNgpQbCJjW:26a+2OtEvwDpjtzJ

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-26_3c54f37ba272ac9c403019ff6fda3038_cryptolocker_JC.exe
- Size
  
  100KB
- MD5
  
  3c54f37ba272ac9c403019ff6fda3038
- SHA1
  
  a18e619124d9c22bb2100329898ac2a8a4f78c9e
- SHA256
  
  b6c1deeb63eed31dcfd414f7e647f58da836832ada201826a224e5ac8ae88e17
- SHA512
  
  7d597d0db110dd4ea285696b350d508d789d5a65fd145243c6acb7050bd255911b8ffd06cf4049d11a9db7cf83575fed85a3353776707c16811ff2a25ae59164
- SSDEEP
  
  1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNgpQbCJjW:26a+2OtEvwDpjtzJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2