Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-25_d725755fbb10f0e9a530bd6dba3f90a8_cryptolocker

  • Size

    42KB

  • Sample

    240225-fvy22acc84

  • MD5

    d725755fbb10f0e9a530bd6dba3f90a8

  • SHA1

    ea4e9fb5ddfdf5657cd42601dd36400957da2e66

  • SHA256

    5e026dbd344969636d95e0dc559fff9ec353fea0e4cd16276a38ed27d6f357f9

  • SHA512

    23fcf02910fd0b7379083a2f21487c9b4f380357ba34e26355a24e541c46aa994c8be04f4ec988739986b3d92b2f433ac0714fadeedc22bf7b0a4d9344300a15

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyN:btB9g/WItCSsAGjX7e9N0hunrknlO

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_d725755fbb10f0e9a530bd6dba3f90a8_cryptolocker

    • Size

      42KB

    • MD5

      d725755fbb10f0e9a530bd6dba3f90a8

    • SHA1

      ea4e9fb5ddfdf5657cd42601dd36400957da2e66

    • SHA256

      5e026dbd344969636d95e0dc559fff9ec353fea0e4cd16276a38ed27d6f357f9

    • SHA512

      23fcf02910fd0b7379083a2f21487c9b4f380357ba34e26355a24e541c46aa994c8be04f4ec988739986b3d92b2f433ac0714fadeedc22bf7b0a4d9344300a15

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyN:btB9g/WItCSsAGjX7e9N0hunrknlO

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks