Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-18_c65dadfd4e7230db4de48037f3979272_cryptolocker

  • Size

    79KB

  • Sample

    240218-wnmnesdg34

  • MD5

    c65dadfd4e7230db4de48037f3979272

  • SHA1

    10ad9310258cf0ccefc7be7e67ee94a7480d744e

  • SHA256

    6235233ee22dfe099b41eb07d50c898253adc8a43dd7acce7dcef521fa43b822

  • SHA512

    ba2ce7d31cd2a7f93712e8b744d99f5df3c32b30247ff5d7e4456b361973ae04f5222c8ad86a37e537d2d689a6df4ea2d0ccc0bd42f69e8178ffa44b64719b06

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNX:vCjsIOtEvwDpj5H9YvQd25

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_c65dadfd4e7230db4de48037f3979272_cryptolocker

    • Size

      79KB

    • MD5

      c65dadfd4e7230db4de48037f3979272

    • SHA1

      10ad9310258cf0ccefc7be7e67ee94a7480d744e

    • SHA256

      6235233ee22dfe099b41eb07d50c898253adc8a43dd7acce7dcef521fa43b822

    • SHA512

      ba2ce7d31cd2a7f93712e8b744d99f5df3c32b30247ff5d7e4456b361973ae04f5222c8ad86a37e537d2d689a6df4ea2d0ccc0bd42f69e8178ffa44b64719b06

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNX:vCjsIOtEvwDpj5H9YvQd25

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks