Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-19_76eee029cc29b2801f2e182210f865b0_cryptolocker

  • Size

    82KB

  • Sample

    240219-zcnm5acf81

  • MD5

    76eee029cc29b2801f2e182210f865b0

  • SHA1

    8ed33a6b78f5dbd4a64b7294ca6f9242a0edb49b

  • SHA256

    89209d331c349e10338f7a88dd740a3c34802a207142767ea00f89923aa641de

  • SHA512

    924463b1e3244fa107cd835c091bec623b17fcb8ce2c7166faf232fa92acdbdc07b25ba3bfeb9b21f7837659a524524c729a312a3b1c668bb97683086f5dae97

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlVSLJ:V6a+pOtEvwDpjvpU

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_76eee029cc29b2801f2e182210f865b0_cryptolocker

    • Size

      82KB

    • MD5

      76eee029cc29b2801f2e182210f865b0

    • SHA1

      8ed33a6b78f5dbd4a64b7294ca6f9242a0edb49b

    • SHA256

      89209d331c349e10338f7a88dd740a3c34802a207142767ea00f89923aa641de

    • SHA512

      924463b1e3244fa107cd835c091bec623b17fcb8ce2c7166faf232fa92acdbdc07b25ba3bfeb9b21f7837659a524524c729a312a3b1c668bb97683086f5dae97

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlVSLJ:V6a+pOtEvwDpjvpU

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks