Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-18_464f6ba5d919a2a13be62d99c43cbcf3_cryptolocker

  • Size

    32KB

  • Sample

    240218-t8z35scg88

  • MD5

    464f6ba5d919a2a13be62d99c43cbcf3

  • SHA1

    b92e98b3ab85358f1545fc13b58e7e43b273fa36

  • SHA256

    3378a70f8f0d863e094cbd3389d400cf8903508bd2fd528d04b96ca1583f1082

  • SHA512

    61003056eff7d0b444b3ba5a89d90050fa5d3754656162017d74d95d106f173d940d4bb4ac3fa4df8e09e3139bc256b90c4c3e5e95af15bd6576d2b6d0d032d0

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3qbSFS:b7o/2n1TCraU6GD1a4Xt9bRU62FS

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_464f6ba5d919a2a13be62d99c43cbcf3_cryptolocker

    • Size

      32KB

    • MD5

      464f6ba5d919a2a13be62d99c43cbcf3

    • SHA1

      b92e98b3ab85358f1545fc13b58e7e43b273fa36

    • SHA256

      3378a70f8f0d863e094cbd3389d400cf8903508bd2fd528d04b96ca1583f1082

    • SHA512

      61003056eff7d0b444b3ba5a89d90050fa5d3754656162017d74d95d106f173d940d4bb4ac3fa4df8e09e3139bc256b90c4c3e5e95af15bd6576d2b6d0d032d0

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3qbSFS:b7o/2n1TCraU6GD1a4Xt9bRU62FS

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks