04615cfcc3afa78f571d0191d75a56a981db9500cc94ff12ab3a1090751da87c | Triage

Sharing

General

Target

2023-08-25_8cf888e09d09b53d21ddf601b72ee126_cryptolocker_JC.exe
Size

35KB
Sample

231013-z94evabb9y
MD5

8cf888e09d09b53d21ddf601b72ee126
SHA1

323a64598b1753f02697ad20893e82361b094736
SHA256

04615cfcc3afa78f571d0191d75a56a981db9500cc94ff12ab3a1090751da87c
SHA512

9f0636b73f89adfceaef8ff4e89eceeb17e502fba696b391d106259f690be729ae470294c795743a6ded5681b49c2b88c04c9cdb0eb1fade5970e3024868e16c
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaDMLZSsplOE:X6QFElP6n+gJQMOtEvwDpjBv1L

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-25_8cf888e09d09b53d21ddf601b72ee126_cryptolocker_JC.exe
- Size
  
  35KB
- MD5
  
  8cf888e09d09b53d21ddf601b72ee126
- SHA1
  
  323a64598b1753f02697ad20893e82361b094736
- SHA256
  
  04615cfcc3afa78f571d0191d75a56a981db9500cc94ff12ab3a1090751da87c
- SHA512
  
  9f0636b73f89adfceaef8ff4e89eceeb17e502fba696b391d106259f690be729ae470294c795743a6ded5681b49c2b88c04c9cdb0eb1fade5970e3024868e16c
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaDMLZSsplOE:X6QFElP6n+gJQMOtEvwDpjBv1L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2