Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-27_ff7895c7a250b2d7dde439cdb28345d6_cryptolocker

  • Size

    30KB

  • Sample

    240127-mvgw3safb4

  • MD5

    ff7895c7a250b2d7dde439cdb28345d6

  • SHA1

    7cbac253ff6fd09a543518d03a21e22f4ed57e70

  • SHA256

    54d634304a152fe21d8ebb31dbea7ef5fcfce0cccecc62976e1774f8177794d2

  • SHA512

    6c314e607653f6e7e74c03f4ece304d2b4c985c354f157b1d6548c96a92e7ee1f3ee7c4dd8a411fed4d17bd1109a367371f5c93a65a37993c9537e0c00e53ba6

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RDB:b7o/2n1TCraU6GD1a4Xt9Rt

Score
10/10

Malware Config

Targets

    • Target

      2024-01-27_ff7895c7a250b2d7dde439cdb28345d6_cryptolocker

    • Size

      30KB

    • MD5

      ff7895c7a250b2d7dde439cdb28345d6

    • SHA1

      7cbac253ff6fd09a543518d03a21e22f4ed57e70

    • SHA256

      54d634304a152fe21d8ebb31dbea7ef5fcfce0cccecc62976e1774f8177794d2

    • SHA512

      6c314e607653f6e7e74c03f4ece304d2b4c985c354f157b1d6548c96a92e7ee1f3ee7c4dd8a411fed4d17bd1109a367371f5c93a65a37993c9537e0c00e53ba6

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RDB:b7o/2n1TCraU6GD1a4Xt9Rt

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks