Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-19_e1c3cda70cc6533feb72de4d729baaf0_cryptolocker

  • Size

    36KB

  • Sample

    240219-gmavxaac8y

  • MD5

    e1c3cda70cc6533feb72de4d729baaf0

  • SHA1

    69de7857e3f52be27953517e2c84597baae86b98

  • SHA256

    45a647161750a5d17d7128011f9c456ce3118960c5d2630d1e0f6f1c7f6fdd7b

  • SHA512

    4ff9faa917512c25e5ab18bb2cbe7171240496ec5d619baf5afaf9f095d272da53ee4e54cc43c1fd7afff2bca1f01622f715b5e82cf84035062f3a6656c7d228

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKU4:btB9g/WItCSsAGjX7e9N0hunKU4

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_e1c3cda70cc6533feb72de4d729baaf0_cryptolocker

    • Size

      36KB

    • MD5

      e1c3cda70cc6533feb72de4d729baaf0

    • SHA1

      69de7857e3f52be27953517e2c84597baae86b98

    • SHA256

      45a647161750a5d17d7128011f9c456ce3118960c5d2630d1e0f6f1c7f6fdd7b

    • SHA512

      4ff9faa917512c25e5ab18bb2cbe7171240496ec5d619baf5afaf9f095d272da53ee4e54cc43c1fd7afff2bca1f01622f715b5e82cf84035062f3a6656c7d228

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKU4:btB9g/WItCSsAGjX7e9N0hunKU4

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks