Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-18_150407815517c43e34164481f6242cd1_cryptolocker

  • Size

    38KB

  • Sample

    240118-2dd67abha6

  • MD5

    150407815517c43e34164481f6242cd1

  • SHA1

    2edd83586d0143ecaa631200815cad8e51aa4fcd

  • SHA256

    af4ded99c084700b54b618bf6ad3592486d8bf6a80e43388e427311896cd69a3

  • SHA512

    d57807e3519e40629350ecfafd8dcee5aae3fe6d56af9d25cb28accda669d759810149a3e4cb759a78af77a8e8ea370ce5c3c8a11600c3f72ff30cf1d69a79a7

  • SSDEEP

    768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6Dy8P4l:bIDOw9a0Dwo3P1ojvUSDhW

Score
10/10

Malware Config

Targets

    • Target

      2024-01-18_150407815517c43e34164481f6242cd1_cryptolocker

    • Size

      38KB

    • MD5

      150407815517c43e34164481f6242cd1

    • SHA1

      2edd83586d0143ecaa631200815cad8e51aa4fcd

    • SHA256

      af4ded99c084700b54b618bf6ad3592486d8bf6a80e43388e427311896cd69a3

    • SHA512

      d57807e3519e40629350ecfafd8dcee5aae3fe6d56af9d25cb28accda669d759810149a3e4cb759a78af77a8e8ea370ce5c3c8a11600c3f72ff30cf1d69a79a7

    • SSDEEP

      768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6Dy8P4l:bIDOw9a0Dwo3P1ojvUSDhW

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks