Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-03_8f14bf224e976245d93af4f650117798_cryptolocker

  • Size

    60KB

  • Sample

    240203-eqvy5sbcdq

  • MD5

    8f14bf224e976245d93af4f650117798

  • SHA1

    831984f718573adc707259cefa0d915db41712a8

  • SHA256

    65f618327828eb487d9af368c7661d068702b8ecb981fc76779281336cc1e589

  • SHA512

    be1150bb24cdd8fc44d755cf9886e15fee13cf69fc681306aaee8825b28b2cb82c2f4710623b041758efd65181d5fa2aed3b08407d8f6321c050784354df10c5

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/x2:X6a+SOtEvwDpjBrOE

Score
10/10

Malware Config

Targets

    • Target

      2024-02-03_8f14bf224e976245d93af4f650117798_cryptolocker

    • Size

      60KB

    • MD5

      8f14bf224e976245d93af4f650117798

    • SHA1

      831984f718573adc707259cefa0d915db41712a8

    • SHA256

      65f618327828eb487d9af368c7661d068702b8ecb981fc76779281336cc1e589

    • SHA512

      be1150bb24cdd8fc44d755cf9886e15fee13cf69fc681306aaee8825b28b2cb82c2f4710623b041758efd65181d5fa2aed3b08407d8f6321c050784354df10c5

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/x2:X6a+SOtEvwDpjBrOE

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks