Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker

  • Size

    49KB

  • Sample

    240227-x5qxvahf3s

  • MD5

    4141d21b9e4096dfa912fd45f355c7e1

  • SHA1

    85fc121d0075fefede08c1ecaea2dd861a725d19

  • SHA256

    14df634e3e23a37b6dfd6c035a41d0a3a78f30e16b220c353406ab043c46119f

  • SHA512

    afa379459a46412b840ed69ada45eaec53d95a6d6d73ec19c7963fb267e68bbaf4c13c6ebce0e14862014b40cf5523ec75c5064a29752077f24337b4518712da

  • SSDEEP

    768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSz8:bgGYcA/53GAA6y37Q6dI+d5b8

Score
10/10

Malware Config

Targets

    • Target

      2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker

    • Size

      49KB

    • MD5

      4141d21b9e4096dfa912fd45f355c7e1

    • SHA1

      85fc121d0075fefede08c1ecaea2dd861a725d19

    • SHA256

      14df634e3e23a37b6dfd6c035a41d0a3a78f30e16b220c353406ab043c46119f

    • SHA512

      afa379459a46412b840ed69ada45eaec53d95a6d6d73ec19c7963fb267e68bbaf4c13c6ebce0e14862014b40cf5523ec75c5064a29752077f24337b4518712da

    • SSDEEP

      768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSz8:bgGYcA/53GAA6y37Q6dI+d5b8

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks