Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-22_1003c9c93d62023efd4040ac0ba7716b_cryptolocker

  • Size

    35KB

  • Sample

    240122-stggtaabh9

  • MD5

    1003c9c93d62023efd4040ac0ba7716b

  • SHA1

    9e7b9ef9a3bf986f00019c84e72af53c23f67bbe

  • SHA256

    d8bf05a7de0376bb370982dbe7af4ae2d275933f34ebea113e38511b7d7e6c67

  • SHA512

    c1dc106fdb5e1432423263cec4b7c4c9aee75c142e2c5b063a6a313b9fe68f86259ffaa7cc5503ee0f437b0946e7ed2ae5c7a4191e672a8a9f99e05eec8e08cc

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEgx3b:bxNrC7kYo1Fxf3s06gN

Score
10/10

Malware Config

Targets

    • Target

      2024-01-22_1003c9c93d62023efd4040ac0ba7716b_cryptolocker

    • Size

      35KB

    • MD5

      1003c9c93d62023efd4040ac0ba7716b

    • SHA1

      9e7b9ef9a3bf986f00019c84e72af53c23f67bbe

    • SHA256

      d8bf05a7de0376bb370982dbe7af4ae2d275933f34ebea113e38511b7d7e6c67

    • SHA512

      c1dc106fdb5e1432423263cec4b7c4c9aee75c142e2c5b063a6a313b9fe68f86259ffaa7cc5503ee0f437b0946e7ed2ae5c7a4191e672a8a9f99e05eec8e08cc

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEgx3b:bxNrC7kYo1Fxf3s06gN

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks