Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-28_00f4dcf11f38c3d7475952e44a7691a3_cryptolocker

  • Size

    82KB

  • Sample

    240228-ntz7psaf85

  • MD5

    00f4dcf11f38c3d7475952e44a7691a3

  • SHA1

    1ec31749c330fb577833b2e8ea77f3f8187fe0f5

  • SHA256

    da26de73b5c0207a269e1b7ce507ad99f20a7aa851f553ded0b783c0dffab1e8

  • SHA512

    07e712db2b487a167254bef945f93cdd2f85c916a4b4642269ef95e64d82c3ac06b1619d0ebadc7f3f24a7481a19a07630647725325b3664381f5f55903ec47a

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAe5/:TCjsIOtEvwDpj5HE/OUHnSMH

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_00f4dcf11f38c3d7475952e44a7691a3_cryptolocker

    • Size

      82KB

    • MD5

      00f4dcf11f38c3d7475952e44a7691a3

    • SHA1

      1ec31749c330fb577833b2e8ea77f3f8187fe0f5

    • SHA256

      da26de73b5c0207a269e1b7ce507ad99f20a7aa851f553ded0b783c0dffab1e8

    • SHA512

      07e712db2b487a167254bef945f93cdd2f85c916a4b4642269ef95e64d82c3ac06b1619d0ebadc7f3f24a7481a19a07630647725325b3664381f5f55903ec47a

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAe5/:TCjsIOtEvwDpj5HE/OUHnSMH

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks