Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-20_0c6b2e54f5d8b41f2cb3882841fcc5e8_cryptolocker

  • Size

    61KB

  • Sample

    240220-e2d5rsah2w

  • MD5

    0c6b2e54f5d8b41f2cb3882841fcc5e8

  • SHA1

    9b11df8d511a76327f3c974dcc6c166380785659

  • SHA256

    1cf20a7dabe115db28c4cec146b9a5c9f153083a418e72ecab69bd5d9c453316

  • SHA512

    e4b963e57aa4d4eb407ee34f0d2752c9130fd85194c2cc9624db2c09a94daf240efb6405ccb7d53205f286ea7c1d43b2961b0a075be458b26075a8b55b0c748b

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbmhn:V6a+pOtEvwDpjvd

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_0c6b2e54f5d8b41f2cb3882841fcc5e8_cryptolocker

    • Size

      61KB

    • MD5

      0c6b2e54f5d8b41f2cb3882841fcc5e8

    • SHA1

      9b11df8d511a76327f3c974dcc6c166380785659

    • SHA256

      1cf20a7dabe115db28c4cec146b9a5c9f153083a418e72ecab69bd5d9c453316

    • SHA512

      e4b963e57aa4d4eb407ee34f0d2752c9130fd85194c2cc9624db2c09a94daf240efb6405ccb7d53205f286ea7c1d43b2961b0a075be458b26075a8b55b0c748b

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbmhn:V6a+pOtEvwDpjvd

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks