Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-11_df0ac49b573f15d19c8a8cf308508e77_cryptolocker

  • Size

    125KB

  • Sample

    240211-qxtkfagf81

  • MD5

    df0ac49b573f15d19c8a8cf308508e77

  • SHA1

    3722c132934f58021448ef04f71add0d1e1f1250

  • SHA256

    f71c753e6a85d59e3f6243d557892b96da677c11713b567f819fd63645f6951c

  • SHA512

    f21449f69c82035d631177cb4ec30f0bb45c73577ea6b7803018c40dccb1cfdc68e6b7085f36e1ab585254fd8104dde37f9e1d0957c5c3e709d2df929fcffea4

  • SSDEEP

    1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpMa:vCA9OtEvwDpj5

Score
10/10

Malware Config

Targets

    • Target

      2024-02-11_df0ac49b573f15d19c8a8cf308508e77_cryptolocker

    • Size

      125KB

    • MD5

      df0ac49b573f15d19c8a8cf308508e77

    • SHA1

      3722c132934f58021448ef04f71add0d1e1f1250

    • SHA256

      f71c753e6a85d59e3f6243d557892b96da677c11713b567f819fd63645f6951c

    • SHA512

      f21449f69c82035d631177cb4ec30f0bb45c73577ea6b7803018c40dccb1cfdc68e6b7085f36e1ab585254fd8104dde37f9e1d0957c5c3e709d2df929fcffea4

    • SSDEEP

      1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpMa:vCA9OtEvwDpj5

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks