Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker

  • Size

    43KB

  • Sample

    240204-hcqdaadhgq

  • MD5

    9352f1a25b7eb11b56edd67379a438fd

  • SHA1

    e70ded9db8057f2e9127574429b012263a7bd6f9

  • SHA256

    590f7c2a93ce8628abf9013dbf48324da51370626480dfc2f4dcc67e7055365d

  • SHA512

    b5ac210c8557868b59bcec36cf13aa889fa350f69c1ee69225f6497e50ecc3d963b985fd8a3d8963c73ac116876f591c2d73a5ef93e775ea27f55765def4a609

  • SSDEEP

    384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLV:79inqyNR/QtOOtEvwDpjBKccJVODvy34

Score
10/10

Malware Config

Targets

    • Target

      2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker

    • Size

      43KB

    • MD5

      9352f1a25b7eb11b56edd67379a438fd

    • SHA1

      e70ded9db8057f2e9127574429b012263a7bd6f9

    • SHA256

      590f7c2a93ce8628abf9013dbf48324da51370626480dfc2f4dcc67e7055365d

    • SHA512

      b5ac210c8557868b59bcec36cf13aa889fa350f69c1ee69225f6497e50ecc3d963b985fd8a3d8963c73ac116876f591c2d73a5ef93e775ea27f55765def4a609

    • SSDEEP

      384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLV:79inqyNR/QtOOtEvwDpjBKccJVODvy34

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks