1b2444cb77bd3f6a1f611793c6ac2364aedf20aa45b7b669401b6fee81581f92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-07_bfc357012f0059bf52acb383b755cc08_cryptolocker_JC.exe
Size

53KB
Sample

231021-y4bxzahh41
MD5

bfc357012f0059bf52acb383b755cc08
SHA1

75c4f3d220e08d4632845936077ccac5752c17da
SHA256

1b2444cb77bd3f6a1f611793c6ac2364aedf20aa45b7b669401b6fee81581f92
SHA512

328aa21edd611694c3f0b23fac330e1ac4d765ee5727437c95153bff8c8752096b383a5abb10ba823ac5967bf73c4754e04ea001497997fe588f892856a44719
SSDEEP

1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb616:BbdDmjr+OtEvwDpjMo

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.2023-09-07_bfc357012f0059bf52acb383b755cc08_cryptolocker_JC.exe
- Size
  
  53KB
- MD5
  
  bfc357012f0059bf52acb383b755cc08
- SHA1
  
  75c4f3d220e08d4632845936077ccac5752c17da
- SHA256
  
  1b2444cb77bd3f6a1f611793c6ac2364aedf20aa45b7b669401b6fee81581f92
- SHA512
  
  328aa21edd611694c3f0b23fac330e1ac4d765ee5727437c95153bff8c8752096b383a5abb10ba823ac5967bf73c4754e04ea001497997fe588f892856a44719
- SSDEEP
  
  1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb616:BbdDmjr+OtEvwDpjMo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2