Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker

  • Size

    71KB

  • Sample

    240220-bcqkqaha25

  • MD5

    f7c37f8878239741d4243f50479158cc

  • SHA1

    8d3b637a19688ee1ca246385a10d072a12feb179

  • SHA256

    a8f4150007d3d933b3fcade9ec948c456a4719d2c6d7110e18aaf6346e174317

  • SHA512

    98ca27ac2c5a4cbb97fe2a16170f9dc98613680d5803b609227fe5c32c33678f22f45d38e178065603c7f7d1bf300cf8a729ebeea579fb12d595bf5b1be14093

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1eSi:X6a+SOtEvwDpjBZYvQd2c

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker

    • Size

      71KB

    • MD5

      f7c37f8878239741d4243f50479158cc

    • SHA1

      8d3b637a19688ee1ca246385a10d072a12feb179

    • SHA256

      a8f4150007d3d933b3fcade9ec948c456a4719d2c6d7110e18aaf6346e174317

    • SHA512

      98ca27ac2c5a4cbb97fe2a16170f9dc98613680d5803b609227fe5c32c33678f22f45d38e178065603c7f7d1bf300cf8a729ebeea579fb12d595bf5b1be14093

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1eSi:X6a+SOtEvwDpjBZYvQd2c

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks