Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-19_d1e205dd09e1e55b492b503a801a2ff1_cryptolocker

  • Size

    47KB

  • Sample

    240119-mby19aceg3

  • MD5

    d1e205dd09e1e55b492b503a801a2ff1

  • SHA1

    cc71af238b0ba2a33969ab67f2fd4ab93ad635f7

  • SHA256

    a95462c4f48d8da6a0449b91a227beb13811b7f00dedaf64176da8e4723b1afb

  • SHA512

    a839706d75645657e54e41e240b09b93302f236fc4a12513fd7156e8fd9ad55e9180883d96e1aca472012fa2774108b0f9438090b9a091c71727c76a46394cd5

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnT9:79mqyNhQMOtEvwDpjBxe8S

Score
10/10

Malware Config

Targets

    • Target

      2024-01-19_d1e205dd09e1e55b492b503a801a2ff1_cryptolocker

    • Size

      47KB

    • MD5

      d1e205dd09e1e55b492b503a801a2ff1

    • SHA1

      cc71af238b0ba2a33969ab67f2fd4ab93ad635f7

    • SHA256

      a95462c4f48d8da6a0449b91a227beb13811b7f00dedaf64176da8e4723b1afb

    • SHA512

      a839706d75645657e54e41e240b09b93302f236fc4a12513fd7156e8fd9ad55e9180883d96e1aca472012fa2774108b0f9438090b9a091c71727c76a46394cd5

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnT9:79mqyNhQMOtEvwDpjBxe8S

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks