Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-21_de6c2325b85f4f86a82a2151f01794bf_cryptolocker

  • Size

    48KB

  • Sample

    240221-xn996adf6x

  • MD5

    de6c2325b85f4f86a82a2151f01794bf

  • SHA1

    69ab5c1b76637312d4c16a337d9cac455b9147fc

  • SHA256

    681dbe8e4c750fce40053bb1281a42696a0ef86a03b7f2ec92337ef739a69cb8

  • SHA512

    96f1d4744c0dca98457b01b1c9ecba28f76b30a667fd04b65f86dcc1c42a850881000732e73ed26c7ec2340c5e6b34213e9889405e34de368fdf65aaad43e382

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZp:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLH

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_de6c2325b85f4f86a82a2151f01794bf_cryptolocker

    • Size

      48KB

    • MD5

      de6c2325b85f4f86a82a2151f01794bf

    • SHA1

      69ab5c1b76637312d4c16a337d9cac455b9147fc

    • SHA256

      681dbe8e4c750fce40053bb1281a42696a0ef86a03b7f2ec92337ef739a69cb8

    • SHA512

      96f1d4744c0dca98457b01b1c9ecba28f76b30a667fd04b65f86dcc1c42a850881000732e73ed26c7ec2340c5e6b34213e9889405e34de368fdf65aaad43e382

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZp:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLH

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks