Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker

  • Size

    50KB

  • Sample

    240127-zc188addfn

  • MD5

    f495f23742f5a1c03b8545c2259e3bd4

  • SHA1

    1eeae450f0fe74cea3572b1cbb754929d61c7669

  • SHA256

    efab791d63e257b2356ae87e3aa982b2aa9f13ffa664c777918f57a06f67432d

  • SHA512

    0d02804149d29657a93eb6377645c27209ef37825f7c0063f5f53a13aeec09c6e7b10f802a8a8c7f943e855fb48a9e0b67d3971be8b4fe667db13e237ebd4286

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRsI:79mqyNhQMOtEvwDpjBxe8TpXRD

Score
10/10

Malware Config

Targets

    • Target

      2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker

    • Size

      50KB

    • MD5

      f495f23742f5a1c03b8545c2259e3bd4

    • SHA1

      1eeae450f0fe74cea3572b1cbb754929d61c7669

    • SHA256

      efab791d63e257b2356ae87e3aa982b2aa9f13ffa664c777918f57a06f67432d

    • SHA512

      0d02804149d29657a93eb6377645c27209ef37825f7c0063f5f53a13aeec09c6e7b10f802a8a8c7f943e855fb48a9e0b67d3971be8b4fe667db13e237ebd4286

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRsI:79mqyNhQMOtEvwDpjBxe8TpXRD

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks