Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-24_663078b4fe7e4a27ce1e73f3f0c05ddd_cryptolocker

  • Size

    48KB

  • Sample

    240224-nvkteaaf27

  • MD5

    663078b4fe7e4a27ce1e73f3f0c05ddd

  • SHA1

    9e2a30447d7c6814a2fcf2292bb6855077006bce

  • SHA256

    93897e2b9f0bb90885780930151588aed0ea0771673c1155fe08f7b18ec91d63

  • SHA512

    a5a670141f4804f1a1a20cdf5063d1005f39fcf001e36c9eced69b27873b0beac468247b1775c12e6360efdcfd333dbe1ca132cb7887b9d5e8f36337f7cadd90

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnToU:79mqyNhQMOtEvwDpjBxe87U

Score
10/10

Malware Config

Targets

    • Target

      2024-02-24_663078b4fe7e4a27ce1e73f3f0c05ddd_cryptolocker

    • Size

      48KB

    • MD5

      663078b4fe7e4a27ce1e73f3f0c05ddd

    • SHA1

      9e2a30447d7c6814a2fcf2292bb6855077006bce

    • SHA256

      93897e2b9f0bb90885780930151588aed0ea0771673c1155fe08f7b18ec91d63

    • SHA512

      a5a670141f4804f1a1a20cdf5063d1005f39fcf001e36c9eced69b27873b0beac468247b1775c12e6360efdcfd333dbe1ca132cb7887b9d5e8f36337f7cadd90

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnToU:79mqyNhQMOtEvwDpjBxe87U

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks