Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-23_9249a009ba00a7ca9a704dcf89a9e112_cryptolocker

  • Size

    52KB

  • Sample

    240223-p2nz3sgf36

  • MD5

    9249a009ba00a7ca9a704dcf89a9e112

  • SHA1

    d5149cfd04f89b042b064f99e0578545baaae454

  • SHA256

    c663f5162ada9d0cbca1614784061cf1e5f16171d180b1565c110b81e1d1166d

  • SHA512

    565921e32d5ed9c8d5b08c35890712a35d43ff88920121ef2ccab3c546bf5d06600df59573713d5fb686f1abc323a945185247c31a17d39ef161c9d7df8c21ab

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTCFWpzgVr2z8h4:X6QFElP6n+gJBMOtEvwDpjBtELVe8a

Score
10/10

Malware Config

Targets

    • Target

      2024-02-23_9249a009ba00a7ca9a704dcf89a9e112_cryptolocker

    • Size

      52KB

    • MD5

      9249a009ba00a7ca9a704dcf89a9e112

    • SHA1

      d5149cfd04f89b042b064f99e0578545baaae454

    • SHA256

      c663f5162ada9d0cbca1614784061cf1e5f16171d180b1565c110b81e1d1166d

    • SHA512

      565921e32d5ed9c8d5b08c35890712a35d43ff88920121ef2ccab3c546bf5d06600df59573713d5fb686f1abc323a945185247c31a17d39ef161c9d7df8c21ab

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTCFWpzgVr2z8h4:X6QFElP6n+gJBMOtEvwDpjBtELVe8a

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks