Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker

  • Size

    39KB

  • Sample

    240225-c8t4fsbb6y

  • MD5

    ba504d1aef112af7be77060d5386f37e

  • SHA1

    8ae821ce54349cfab5442d9588bb55ed47fd001d

  • SHA256

    4451611b7da1bc883789f4f952f2a8b04fe15bc4792aaa6ca479db2df1c65133

  • SHA512

    8f9da5f8f01fec98387d20c23928e63153c82c7b7ba7969e2905a6b1cb13c282e2d54fe77c47d2e9bb46746db10e01bf3c6493211a2d7b7379781ad990082c7b

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axRVZBL:V6QFElP6n+gMQMOtEvwDpjyaYaLBL

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker

    • Size

      39KB

    • MD5

      ba504d1aef112af7be77060d5386f37e

    • SHA1

      8ae821ce54349cfab5442d9588bb55ed47fd001d

    • SHA256

      4451611b7da1bc883789f4f952f2a8b04fe15bc4792aaa6ca479db2df1c65133

    • SHA512

      8f9da5f8f01fec98387d20c23928e63153c82c7b7ba7969e2905a6b1cb13c282e2d54fe77c47d2e9bb46746db10e01bf3c6493211a2d7b7379781ad990082c7b

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axRVZBL:V6QFElP6n+gMQMOtEvwDpjyaYaLBL

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks