Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-13_c861b516460a29422de670716c304fb9_cryptolocker

  • Size

    93KB

  • Sample

    240213-gw53eacd28

  • MD5

    c861b516460a29422de670716c304fb9

  • SHA1

    be9d59f396888dd2a3c56a3eae28ff27a7d0b9dd

  • SHA256

    9fbe475255a4b31d4845b52155cfe7599f2153bd152150a32cc8b97b9de6abc9

  • SHA512

    e2966d5835ff4c1438a9cabfce96e8b828e2fb631a44dce9685ee1ee6459799e6bb86e3f65df8645a87f06aeb9c96d7a026ae3b0533155861c22efeb3f50b3b2

  • SSDEEP

    1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC+:26a+2OtEvwDpjtzR

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_c861b516460a29422de670716c304fb9_cryptolocker

    • Size

      93KB

    • MD5

      c861b516460a29422de670716c304fb9

    • SHA1

      be9d59f396888dd2a3c56a3eae28ff27a7d0b9dd

    • SHA256

      9fbe475255a4b31d4845b52155cfe7599f2153bd152150a32cc8b97b9de6abc9

    • SHA512

      e2966d5835ff4c1438a9cabfce96e8b828e2fb631a44dce9685ee1ee6459799e6bb86e3f65df8645a87f06aeb9c96d7a026ae3b0533155861c22efeb3f50b3b2

    • SSDEEP

      1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC+:26a+2OtEvwDpjtzR

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks