Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-28_940bbbe16537cd9530880f6ddb301944_cryptolocker

  • Size

    41KB

  • Sample

    240128-d4g4rscbcm

  • MD5

    940bbbe16537cd9530880f6ddb301944

  • SHA1

    6a0716162dc968a3acbf820b15a20177093f059a

  • SHA256

    b237d394239901d8c724faeca0c4163d61ef365f680dc491814929076dfe38aa

  • SHA512

    efd321772c1099457005da59d9d307719090078b5b8dc32f2cfc14f7927de9fde6048f33b861af0c2cca3ed6851abfda9bc8ad5d9903fe7d0244199edf9279fd

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMRqB:bc/y2lkF0+BjB

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_940bbbe16537cd9530880f6ddb301944_cryptolocker

    • Size

      41KB

    • MD5

      940bbbe16537cd9530880f6ddb301944

    • SHA1

      6a0716162dc968a3acbf820b15a20177093f059a

    • SHA256

      b237d394239901d8c724faeca0c4163d61ef365f680dc491814929076dfe38aa

    • SHA512

      efd321772c1099457005da59d9d307719090078b5b8dc32f2cfc14f7927de9fde6048f33b861af0c2cca3ed6851abfda9bc8ad5d9903fe7d0244199edf9279fd

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMRqB:bc/y2lkF0+BjB

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks