Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-14_8bdfc9816218f3700a83386a3cc3f7e1_cryptolocker

  • Size

    40KB

  • Sample

    240214-q3z96sdc83

  • MD5

    8bdfc9816218f3700a83386a3cc3f7e1

  • SHA1

    ec8726ada3e8feb001e04fc6c4857fb97ab62464

  • SHA256

    035183d8c336082843ba0871d51107530523294ef2713d1bdc71ac9a2647196d

  • SHA512

    7a570a1c3243f0f57821abdefd48986fdd9e6e617ebb6ba36e9a5b60c7675feeb8e7f6c0351e2a140989a749dd64864a242e6cecb94b490afeb2f295d560c78d

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqJzY:bxNrC7kYo1Fxf3s05rwxbFSc

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_8bdfc9816218f3700a83386a3cc3f7e1_cryptolocker

    • Size

      40KB

    • MD5

      8bdfc9816218f3700a83386a3cc3f7e1

    • SHA1

      ec8726ada3e8feb001e04fc6c4857fb97ab62464

    • SHA256

      035183d8c336082843ba0871d51107530523294ef2713d1bdc71ac9a2647196d

    • SHA512

      7a570a1c3243f0f57821abdefd48986fdd9e6e617ebb6ba36e9a5b60c7675feeb8e7f6c0351e2a140989a749dd64864a242e6cecb94b490afeb2f295d560c78d

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqJzY:bxNrC7kYo1Fxf3s05rwxbFSc

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks