Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-18_6b510bf5b07c6e0384c20db9524fad80_cryptolocker

  • Size

    385KB

  • Sample

    240218-2q4bvafc8w

  • MD5

    6b510bf5b07c6e0384c20db9524fad80

  • SHA1

    302395aa040ae4f1d0503b91e836aebf520555b3

  • SHA256

    4cb3ac8aa682021b7dfd936dcfcec3baa182d97448767b5a0b656eaa4ca9767f

  • SHA512

    712e83c44ef264b0db2a28f794ab5318ad392155c766d428df4b3521a1fcd366e3789e4a5db8770f12a951d2c2786c2cfed5ddfe10b2b779b41c6f7cbcc7ce6c

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXo:nnOflT/ZFIjBz3xjTxynGUOUhXo

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_6b510bf5b07c6e0384c20db9524fad80_cryptolocker

    • Size

      385KB

    • MD5

      6b510bf5b07c6e0384c20db9524fad80

    • SHA1

      302395aa040ae4f1d0503b91e836aebf520555b3

    • SHA256

      4cb3ac8aa682021b7dfd936dcfcec3baa182d97448767b5a0b656eaa4ca9767f

    • SHA512

      712e83c44ef264b0db2a28f794ab5318ad392155c766d428df4b3521a1fcd366e3789e4a5db8770f12a951d2c2786c2cfed5ddfe10b2b779b41c6f7cbcc7ce6c

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXo:nnOflT/ZFIjBz3xjTxynGUOUhXo

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks