Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-29_022875d8858cb4afe1976d0f7a9ff71c_cryptolocker

  • Size

    75KB

  • Sample

    240129-nglhsageh6

  • MD5

    022875d8858cb4afe1976d0f7a9ff71c

  • SHA1

    08aa27c3bb6d44dde60ff50ebefe924b0bb9fc8d

  • SHA256

    06319e8ac391fd4a744e1e5376da8eea989b274f2ff445f96bc2f0b0c471c1fc

  • SHA512

    d5649137a9711d0eefb44880ce79f2ebce40c86154f15fb7e9e7da7547960d2b173e871108f5d790181e199ece21b1075c6166371e01db87ab27e1fd8939f76b

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KEWTF:ZVxkGOtEvwDpjcaxM

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_022875d8858cb4afe1976d0f7a9ff71c_cryptolocker

    • Size

      75KB

    • MD5

      022875d8858cb4afe1976d0f7a9ff71c

    • SHA1

      08aa27c3bb6d44dde60ff50ebefe924b0bb9fc8d

    • SHA256

      06319e8ac391fd4a744e1e5376da8eea989b274f2ff445f96bc2f0b0c471c1fc

    • SHA512

      d5649137a9711d0eefb44880ce79f2ebce40c86154f15fb7e9e7da7547960d2b173e871108f5d790181e199ece21b1075c6166371e01db87ab27e1fd8939f76b

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KEWTF:ZVxkGOtEvwDpjcaxM

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks