Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-21_7e6e384f14e83024e37d0a99e4cfbd65_cryptolocker

  • Size

    60KB

  • Sample

    240221-r28qlahh22

  • MD5

    7e6e384f14e83024e37d0a99e4cfbd65

  • SHA1

    45496cb518f0f6804e01359106e676cee2482ea4

  • SHA256

    9951aff5b44efb3850fee578e8d6dbc6637ed49512655066713f016de2fe10c2

  • SHA512

    3497982f9cd0e24a2f26795b830a4c01eb9b9b842a850870bd8f7791b4d1f79f83c7714e5335b3a0976adeea93437a59445e0d7b0e060263c6290b58af227748

  • SSDEEP

    1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNi:btng54SMLr+/AO/kIhfoKMHdl

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_7e6e384f14e83024e37d0a99e4cfbd65_cryptolocker

    • Size

      60KB

    • MD5

      7e6e384f14e83024e37d0a99e4cfbd65

    • SHA1

      45496cb518f0f6804e01359106e676cee2482ea4

    • SHA256

      9951aff5b44efb3850fee578e8d6dbc6637ed49512655066713f016de2fe10c2

    • SHA512

      3497982f9cd0e24a2f26795b830a4c01eb9b9b842a850870bd8f7791b4d1f79f83c7714e5335b3a0976adeea93437a59445e0d7b0e060263c6290b58af227748

    • SSDEEP

      1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNi:btng54SMLr+/AO/kIhfoKMHdl

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks