Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-20_a0b0149fb8c352722ca3732e499123e9_cryptolocker

  • Size

    58KB

  • Sample

    240220-r8xa5saa3w

  • MD5

    a0b0149fb8c352722ca3732e499123e9

  • SHA1

    094d891b90b7e37dd8643f1bd4706003a6ed8042

  • SHA256

    636f0198735446ab2e6e522f29c87c03f91d08fcece3b7df6f44dbb8ed7522b7

  • SHA512

    122f770bd669b48e7c9220cde75d0e5552995d47b490125b7b714c92f2cb05b1e93bbaa567a9d5653ff56515d275f3f1f153567f0479edb01fc29c3993896e7a

  • SSDEEP

    1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHD:btng54SMLr+/AO/kIhfoKMHdu

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_a0b0149fb8c352722ca3732e499123e9_cryptolocker

    • Size

      58KB

    • MD5

      a0b0149fb8c352722ca3732e499123e9

    • SHA1

      094d891b90b7e37dd8643f1bd4706003a6ed8042

    • SHA256

      636f0198735446ab2e6e522f29c87c03f91d08fcece3b7df6f44dbb8ed7522b7

    • SHA512

      122f770bd669b48e7c9220cde75d0e5552995d47b490125b7b714c92f2cb05b1e93bbaa567a9d5653ff56515d275f3f1f153567f0479edb01fc29c3993896e7a

    • SSDEEP

      1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHD:btng54SMLr+/AO/kIhfoKMHdu

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks