7a65ded871499427f1a87ea3fe51a2e4ca051baf604dc2c03853e07324f66f3e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-08_1088a72c4331c401e6a01272a9618f27_cryptolocker_JC.exe
Size

28KB
Sample

231022-jtbf5aed5v
MD5

1088a72c4331c401e6a01272a9618f27
SHA1

2d5abf8a0263ac6ab69435eb70ce14c4f488fc89
SHA256

7a65ded871499427f1a87ea3fe51a2e4ca051baf604dc2c03853e07324f66f3e
SHA512

4788b44ab29f756c9d219c36b7e6373a0f5fb4ff6abf92ddee9f0722cbb872684042e9c19d39d4c7c5f2fa64ca8d9324b332b293e6cab180c4fe63558bd6107d
SSDEEP

384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznG:b/yC4GyNM01GuQMNXw2PSjG

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.2023-09-08_1088a72c4331c401e6a01272a9618f27_cryptolocker_JC.exe
- Size
  
  28KB
- MD5
  
  1088a72c4331c401e6a01272a9618f27
- SHA1
  
  2d5abf8a0263ac6ab69435eb70ce14c4f488fc89
- SHA256
  
  7a65ded871499427f1a87ea3fe51a2e4ca051baf604dc2c03853e07324f66f3e
- SHA512
  
  4788b44ab29f756c9d219c36b7e6373a0f5fb4ff6abf92ddee9f0722cbb872684042e9c19d39d4c7c5f2fa64ca8d9324b332b293e6cab180c4fe63558bd6107d
- SSDEEP
  
  384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznG:b/yC4GyNM01GuQMNXw2PSjG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2