Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker

  • Size

    63KB

  • Sample

    240223-gf5rpscb6s

  • MD5

    540dd32e364e7a5b56564d4274b4074e

  • SHA1

    b2dbe0ee9cb885fe381071d7b6b8b1c4f903e6d3

  • SHA256

    6f2cc9ca4294952ee5e520bb4744cc9973d7345f71b17b71a5459ae2cfb1add5

  • SHA512

    545ec953f7e281c2ec9507e46024c679c367499d07f7fc0a88a90d7cbeda94c97c67804464c7288d533234d3fcfc30f0517e93079b89cfd288dda9c91c989531

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMHpaIq:TCjsIOtEvwDpj5HE/OUHnSMt

Score
10/10

Malware Config

Targets

    • Target

      2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker

    • Size

      63KB

    • MD5

      540dd32e364e7a5b56564d4274b4074e

    • SHA1

      b2dbe0ee9cb885fe381071d7b6b8b1c4f903e6d3

    • SHA256

      6f2cc9ca4294952ee5e520bb4744cc9973d7345f71b17b71a5459ae2cfb1add5

    • SHA512

      545ec953f7e281c2ec9507e46024c679c367499d07f7fc0a88a90d7cbeda94c97c67804464c7288d533234d3fcfc30f0517e93079b89cfd288dda9c91c989531

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMHpaIq:TCjsIOtEvwDpj5HE/OUHnSMt

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks