Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-20_1f70d10feb59a8aa2412c852bdc3deea_cryptolocker

  • Size

    30KB

  • Sample

    240220-btyyesgf6z

  • MD5

    1f70d10feb59a8aa2412c852bdc3deea

  • SHA1

    e63d0494f6b086aac1623af56794e7b8daa1098f

  • SHA256

    145633926f053d37dc5d7d555d444d310e10cbf298f589457a2bcca5eb196860

  • SHA512

    b54cd3b4fce2b88fddc5a40bfe0d06ef123479588b84593db0a73e1380097ca77df545f425daf9c03af0d27ad9e8e2a9756b96ab2af8dc3bd1977f0cf6e8d1c9

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RXmo:b7o/2n1TCraU6GD1a4Xt9Rt

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_1f70d10feb59a8aa2412c852bdc3deea_cryptolocker

    • Size

      30KB

    • MD5

      1f70d10feb59a8aa2412c852bdc3deea

    • SHA1

      e63d0494f6b086aac1623af56794e7b8daa1098f

    • SHA256

      145633926f053d37dc5d7d555d444d310e10cbf298f589457a2bcca5eb196860

    • SHA512

      b54cd3b4fce2b88fddc5a40bfe0d06ef123479588b84593db0a73e1380097ca77df545f425daf9c03af0d27ad9e8e2a9756b96ab2af8dc3bd1977f0cf6e8d1c9

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RXmo:b7o/2n1TCraU6GD1a4Xt9Rt

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks