Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker

  • Size

    35KB

  • Sample

    240217-zjy3fabc48

  • MD5

    cd80cd90ea5ec2e8bc19304ef9e90738

  • SHA1

    c4396ab3c30429b417e9fa7524ed3cf5bd208b13

  • SHA256

    57791ed234d7b3e1e39ffa9408c775018d750d2b0db45fc688b21710498ba176

  • SHA512

    8f41ba70c8d128cd91ddd36905e296dc62de1e6c6d7cc0f2f81b51e2b64d4eb0be758bd85b39b7bdb0ecbc42cb9df19252f8c2f8fd2e5968d28f08fe7441bca1

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkLK:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLK

Score
10/10

Malware Config

Targets

    • Target

      2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker

    • Size

      35KB

    • MD5

      cd80cd90ea5ec2e8bc19304ef9e90738

    • SHA1

      c4396ab3c30429b417e9fa7524ed3cf5bd208b13

    • SHA256

      57791ed234d7b3e1e39ffa9408c775018d750d2b0db45fc688b21710498ba176

    • SHA512

      8f41ba70c8d128cd91ddd36905e296dc62de1e6c6d7cc0f2f81b51e2b64d4eb0be758bd85b39b7bdb0ecbc42cb9df19252f8c2f8fd2e5968d28f08fe7441bca1

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkLK:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLK

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks