Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-19_6f931306b5fdea3c0803b4a759793211_cryptolocker

  • Size

    32KB

  • Sample

    240219-2lknyafd49

  • MD5

    6f931306b5fdea3c0803b4a759793211

  • SHA1

    e8553773bc2799731e6876ade3613c4ac899cb82

  • SHA256

    5bb754176a745e7fe20a3402873d8a6d531a329ec72ebc95ceb84fdc4cf3b3fe

  • SHA512

    716a7e1af71801b3db9c84f8f7ca2f768a731bfbf7bd4a7056cc636d22bff412c315abb02c55a0b19f0d6813d229ded95e8d71deba8ea601617992048d45c3eb

  • SSDEEP

    384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuM9gpD:bAvJCYOOvbRPDEgXRcuM9gt

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_6f931306b5fdea3c0803b4a759793211_cryptolocker

    • Size

      32KB

    • MD5

      6f931306b5fdea3c0803b4a759793211

    • SHA1

      e8553773bc2799731e6876ade3613c4ac899cb82

    • SHA256

      5bb754176a745e7fe20a3402873d8a6d531a329ec72ebc95ceb84fdc4cf3b3fe

    • SHA512

      716a7e1af71801b3db9c84f8f7ca2f768a731bfbf7bd4a7056cc636d22bff412c315abb02c55a0b19f0d6813d229ded95e8d71deba8ea601617992048d45c3eb

    • SSDEEP

      384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuM9gpD:bAvJCYOOvbRPDEgXRcuM9gt

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks