Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-04_af4f24a2df408b33620356d555fdf112_cryptolocker

  • Size

    74KB

  • Sample

    240204-ghblmsdbfn

  • MD5

    af4f24a2df408b33620356d555fdf112

  • SHA1

    d350d4f245790c0933b56de53b16dc14433c7c19

  • SHA256

    d9c497358e930776f160310d3536e01958c66ed39dca73e6e9730b2e7881b8dd

  • SHA512

    4caa8fc1e582a24a68ec07b4959dbf2b60640deae4f0c812bad88913eff3668f7b4e8ff30914070873ce6c21a87d730ccbf7d7fd9050caa1379b3de0027afa19

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1c5:X6a+SOtEvwDpjBZYvQd2G

Score
10/10

Malware Config

Targets

    • Target

      2024-02-04_af4f24a2df408b33620356d555fdf112_cryptolocker

    • Size

      74KB

    • MD5

      af4f24a2df408b33620356d555fdf112

    • SHA1

      d350d4f245790c0933b56de53b16dc14433c7c19

    • SHA256

      d9c497358e930776f160310d3536e01958c66ed39dca73e6e9730b2e7881b8dd

    • SHA512

      4caa8fc1e582a24a68ec07b4959dbf2b60640deae4f0c812bad88913eff3668f7b4e8ff30914070873ce6c21a87d730ccbf7d7fd9050caa1379b3de0027afa19

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1c5:X6a+SOtEvwDpjBZYvQd2G

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks