Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-18_7632cef317d33f9cc20c82279ca43acb_cryptolocker

  • Size

    67KB

  • Sample

    240118-2wvxnaddej

  • MD5

    7632cef317d33f9cc20c82279ca43acb

  • SHA1

    96da537093904ad54f1807ae8fac62951f8bdd34

  • SHA256

    74c3ce4746fd10a7951dcdd10f8a8922566653bc936dffaedc53b84b9ec15d97

  • SHA512

    7aa29122b120f144f1c9cf97e1bce919db0089233e50851881604f11ad4466af9b9257f010438ccf1af91ee6bc601dd0c9152e5619767c24310151e686da385d

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU4:DW60sllyWOtEvwDpjwF85S

Score
10/10

Malware Config

Targets

    • Target

      2024-01-18_7632cef317d33f9cc20c82279ca43acb_cryptolocker

    • Size

      67KB

    • MD5

      7632cef317d33f9cc20c82279ca43acb

    • SHA1

      96da537093904ad54f1807ae8fac62951f8bdd34

    • SHA256

      74c3ce4746fd10a7951dcdd10f8a8922566653bc936dffaedc53b84b9ec15d97

    • SHA512

      7aa29122b120f144f1c9cf97e1bce919db0089233e50851881604f11ad4466af9b9257f010438ccf1af91ee6bc601dd0c9152e5619767c24310151e686da385d

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU4:DW60sllyWOtEvwDpjwF85S

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks