Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-01_be0a45bc4eb66a157c79d8ca25c6e130_cryptolocker

  • Size

    41KB

  • Sample

    240201-3h7vqsged8

  • MD5

    be0a45bc4eb66a157c79d8ca25c6e130

  • SHA1

    6c3196a6f6e2fbc84baddc6917e910538622d5d5

  • SHA256

    02c073271e52a32d0dd195cddf65ba1648376d7badcb7b331343c8cc3305e671

  • SHA512

    9c3e09d5f82b5f0ec79b1f8e81a87b00f29d66c40fe5cfb85b34feea94aa617527b90dc3ccf4c86b10b94257b89512c3ad57a7f8a2efec3a156df30340d58a8f

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMRqyQ:bc/y2lkF0+Bjv

Score
10/10

Malware Config

Targets

    • Target

      2024-02-01_be0a45bc4eb66a157c79d8ca25c6e130_cryptolocker

    • Size

      41KB

    • MD5

      be0a45bc4eb66a157c79d8ca25c6e130

    • SHA1

      6c3196a6f6e2fbc84baddc6917e910538622d5d5

    • SHA256

      02c073271e52a32d0dd195cddf65ba1648376d7badcb7b331343c8cc3305e671

    • SHA512

      9c3e09d5f82b5f0ec79b1f8e81a87b00f29d66c40fe5cfb85b34feea94aa617527b90dc3ccf4c86b10b94257b89512c3ad57a7f8a2efec3a156df30340d58a8f

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMRqyQ:bc/y2lkF0+Bjv

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks