Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-22_c36f08de0e4fd891e5b296fa1aff3ef9_cryptolocker

  • Size

    60KB

  • Sample

    240222-gtb2jsdf52

  • MD5

    c36f08de0e4fd891e5b296fa1aff3ef9

  • SHA1

    33edd804164f63a79015ddac3581f11b704dd8c0

  • SHA256

    4b67fec7eb0d4f6994dd39774e22745e3bdc882ba771cd158544732eed16122c

  • SHA512

    6fcf9bc10adced6c87b1d4307428e3d4dad8d4f0a07f840061cea0e8575b3893c9f2eff94c40be8921f7e63c34ff6cf64fcf4b294aa95b070ef7945fe92c8c24

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI3:TCjsIOtEvwDpj5HE/OUHnSMp

Score
10/10

Malware Config

Targets

    • Target

      2024-02-22_c36f08de0e4fd891e5b296fa1aff3ef9_cryptolocker

    • Size

      60KB

    • MD5

      c36f08de0e4fd891e5b296fa1aff3ef9

    • SHA1

      33edd804164f63a79015ddac3581f11b704dd8c0

    • SHA256

      4b67fec7eb0d4f6994dd39774e22745e3bdc882ba771cd158544732eed16122c

    • SHA512

      6fcf9bc10adced6c87b1d4307428e3d4dad8d4f0a07f840061cea0e8575b3893c9f2eff94c40be8921f7e63c34ff6cf64fcf4b294aa95b070ef7945fe92c8c24

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI3:TCjsIOtEvwDpj5HE/OUHnSMp

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks