Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-25_214afdbac15a26a76b2786a474ef50d3_cryptolocker

  • Size

    30KB

  • Sample

    240125-svs71aafen

  • MD5

    214afdbac15a26a76b2786a474ef50d3

  • SHA1

    a653d64ae39002d2f8e76e45b19a977c46b65beb

  • SHA256

    38b792be7521665547e9fb933fee5a9ebbd8e2663bcb46575594e2bff31e82a4

  • SHA512

    3dfc932de4707376df1f84ce177b4ab95c4c9d170a0ac42a469a66b7d1592a657978190bea83912b55b780acca962d9c35ec77fe8c210cc1e13cc30ac37e3949

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsa:bA74zYcgT/Ekd0ryfjPIunvsa

Score
10/10

Malware Config

Targets

    • Target

      2024-01-25_214afdbac15a26a76b2786a474ef50d3_cryptolocker

    • Size

      30KB

    • MD5

      214afdbac15a26a76b2786a474ef50d3

    • SHA1

      a653d64ae39002d2f8e76e45b19a977c46b65beb

    • SHA256

      38b792be7521665547e9fb933fee5a9ebbd8e2663bcb46575594e2bff31e82a4

    • SHA512

      3dfc932de4707376df1f84ce177b4ab95c4c9d170a0ac42a469a66b7d1592a657978190bea83912b55b780acca962d9c35ec77fe8c210cc1e13cc30ac37e3949

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsa:bA74zYcgT/Ekd0ryfjPIunvsa

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks