Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker

  • Size

    50KB

  • Sample

    240228-2eqllsfd51

  • MD5

    bd714e4cdc618ea3aa54c1f5895610e2

  • SHA1

    23d4894733cfefc583bbb0e0fb96094db93ad368

  • SHA256

    08ad67c3d5ebb9053091525202174f1a08d256345e0223129b20d2c6857c7eba

  • SHA512

    f5fda78424490c9811dbedcf2eed5909c4bd2a71767dd53a4d27030229080f28633f507f4bca5534f03a8a2c8958aa0ebc78aa58acd66a59641b47e1d73d0d8d

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakNe:V6a+pOtEvwDpj9

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker

    • Size

      50KB

    • MD5

      bd714e4cdc618ea3aa54c1f5895610e2

    • SHA1

      23d4894733cfefc583bbb0e0fb96094db93ad368

    • SHA256

      08ad67c3d5ebb9053091525202174f1a08d256345e0223129b20d2c6857c7eba

    • SHA512

      f5fda78424490c9811dbedcf2eed5909c4bd2a71767dd53a4d27030229080f28633f507f4bca5534f03a8a2c8958aa0ebc78aa58acd66a59641b47e1d73d0d8d

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakNe:V6a+pOtEvwDpj9

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks