Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker

  • Size

    48KB

  • Sample

    240225-fmgg1sbh96

  • MD5

    95814d3aa2bca4e513baccd4dd6d4793

  • SHA1

    cb779e41145a56f74fd37c31c667ef643493277d

  • SHA256

    e412e5a769cfe712c18b8187b1f66c508d91d7fddc116c3a0bce3932d3cfb313

  • SHA512

    910d3d3764a7fb6114240ce8392dcb05ad75f2f55a1f77c1e757af4626aa42a197f58922c440940dbafed2f0d79fb83a720b6e8f26b841983f56357e41461b3a

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakzu:V6a+pOtEvwDpjD

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker

    • Size

      48KB

    • MD5

      95814d3aa2bca4e513baccd4dd6d4793

    • SHA1

      cb779e41145a56f74fd37c31c667ef643493277d

    • SHA256

      e412e5a769cfe712c18b8187b1f66c508d91d7fddc116c3a0bce3932d3cfb313

    • SHA512

      910d3d3764a7fb6114240ce8392dcb05ad75f2f55a1f77c1e757af4626aa42a197f58922c440940dbafed2f0d79fb83a720b6e8f26b841983f56357e41461b3a

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakzu:V6a+pOtEvwDpjD

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks