Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-17_f30153c12da50e8a944d68897d22c9ff_cryptolocker

  • Size

    36KB

  • Sample

    240217-yhpa6sah25

  • MD5

    f30153c12da50e8a944d68897d22c9ff

  • SHA1

    ff9c4dd8125266b5a628125438098465dd57d5fe

  • SHA256

    cf112ed70ed15e128e8dabf12804625ee25201ed631f202a26001fb497bfca86

  • SHA512

    13d3d0b163a0f6626c7414229fc5abe98e30e6e640146d110bb09bc41dafbde719e7b45c4842680c2c03f89f805f926379464a017c561786d11a9b401fbe0af3

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1iIJSFlWvmY:X6QFElP6n+gJQMOtEvwDpjBngHna

Score
10/10

Malware Config

Targets

    • Target

      2024-02-17_f30153c12da50e8a944d68897d22c9ff_cryptolocker

    • Size

      36KB

    • MD5

      f30153c12da50e8a944d68897d22c9ff

    • SHA1

      ff9c4dd8125266b5a628125438098465dd57d5fe

    • SHA256

      cf112ed70ed15e128e8dabf12804625ee25201ed631f202a26001fb497bfca86

    • SHA512

      13d3d0b163a0f6626c7414229fc5abe98e30e6e640146d110bb09bc41dafbde719e7b45c4842680c2c03f89f805f926379464a017c561786d11a9b401fbe0af3

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1iIJSFlWvmY:X6QFElP6n+gJQMOtEvwDpjBngHna

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks