Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-28_047980f8b0ffb7986e8cf28f1b72d40b_cryptolocker

  • Size

    36KB

  • Sample

    240228-g5n59adc2x

  • MD5

    047980f8b0ffb7986e8cf28f1b72d40b

  • SHA1

    77c95a86cae801552d984e1c75eeab996436cd74

  • SHA256

    8d968506fad49b5819bc1c11969fc313ad41ac8efa148b472c9b4d8a212591dc

  • SHA512

    0c831d7e2ca2e6a087396af60ddbfe6580feddfd4f84de6955f330de395f417113f2dc900313e45001797ca66f4246cbd74d784481f3d48a81ef31008691250c

  • SSDEEP

    768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wmk5ut:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xm

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_047980f8b0ffb7986e8cf28f1b72d40b_cryptolocker

    • Size

      36KB

    • MD5

      047980f8b0ffb7986e8cf28f1b72d40b

    • SHA1

      77c95a86cae801552d984e1c75eeab996436cd74

    • SHA256

      8d968506fad49b5819bc1c11969fc313ad41ac8efa148b472c9b4d8a212591dc

    • SHA512

      0c831d7e2ca2e6a087396af60ddbfe6580feddfd4f84de6955f330de395f417113f2dc900313e45001797ca66f4246cbd74d784481f3d48a81ef31008691250c

    • SSDEEP

      768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wmk5ut:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xm

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks