Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-24_c42e9dd8dff21b121be1154a752a87d5_cryptolocker

  • Size

    60KB

  • Sample

    240124-jl51rsdbdm

  • MD5

    c42e9dd8dff21b121be1154a752a87d5

  • SHA1

    a79d54c989fa0cadcb370ecb188b0e1383352e92

  • SHA256

    058fab59765393335f646f701c1ed8eee1b37085b69f0bdda99b44cc62f9e44b

  • SHA512

    c163f99ba3cf96c0a12cff752c982effd6fde2ed2da777ec8fe19e5cf285d25cdbc94ec6fa2978515a792e6fa219c03b81ef09eb4db65e2348fcf5da0b812689

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMP6:TCjsIOtEvwDpj5HE/OUHnSMJ

Score
10/10

Malware Config

Targets

    • Target

      2024-01-24_c42e9dd8dff21b121be1154a752a87d5_cryptolocker

    • Size

      60KB

    • MD5

      c42e9dd8dff21b121be1154a752a87d5

    • SHA1

      a79d54c989fa0cadcb370ecb188b0e1383352e92

    • SHA256

      058fab59765393335f646f701c1ed8eee1b37085b69f0bdda99b44cc62f9e44b

    • SHA512

      c163f99ba3cf96c0a12cff752c982effd6fde2ed2da777ec8fe19e5cf285d25cdbc94ec6fa2978515a792e6fa219c03b81ef09eb4db65e2348fcf5da0b812689

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMP6:TCjsIOtEvwDpj5HE/OUHnSMJ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks