Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-21_9635892324429cd18feb339ae78f51be_cryptolocker

  • Size

    42KB

  • Sample

    240221-q783wagc9y

  • MD5

    9635892324429cd18feb339ae78f51be

  • SHA1

    495be9cf04a0e572800e10c5a326494dc74b5f4a

  • SHA256

    ffd02132783e7bae8534e18e92e41953ca72576d01ffd4ba0920ae1c98c02413

  • SHA512

    3f24fbfbf5cf3fddad4100fa9edf93fc5d7540ff422615dc2006083b18928e7baec0dc8b12f9e422d5dc62e4b3654d89b5b9d4f14475df67930bcbbecc3b4304

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Z:bxNrC7kYo1Fxf3s05rwxbF7Z

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_9635892324429cd18feb339ae78f51be_cryptolocker

    • Size

      42KB

    • MD5

      9635892324429cd18feb339ae78f51be

    • SHA1

      495be9cf04a0e572800e10c5a326494dc74b5f4a

    • SHA256

      ffd02132783e7bae8534e18e92e41953ca72576d01ffd4ba0920ae1c98c02413

    • SHA512

      3f24fbfbf5cf3fddad4100fa9edf93fc5d7540ff422615dc2006083b18928e7baec0dc8b12f9e422d5dc62e4b3654d89b5b9d4f14475df67930bcbbecc3b4304

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Z:bxNrC7kYo1Fxf3s05rwxbF7Z

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks