Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-06_a689e5a227a39a73177b46290363b622_cryptolocker

  • Size

    52KB

  • Sample

    240306-a2kkbsfc42

  • MD5

    a689e5a227a39a73177b46290363b622

  • SHA1

    e04efe60c849a0bdcbe1d46e931ce0ff129428bd

  • SHA256

    4b0aa385ce245b19042933149eeec8416a320f12e21fa27d302d0b23b33d42ed

  • SHA512

    c6fbf6bdd920c947f2b10585caad7340828029124466acfadd800c14d55c582ca5dd762918494c83841717e72cc524c8c89f77b219441c01a2ee00866c86f4c1

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO58:ZVxkGOtEvwDpjcG

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_a689e5a227a39a73177b46290363b622_cryptolocker

    • Size

      52KB

    • MD5

      a689e5a227a39a73177b46290363b622

    • SHA1

      e04efe60c849a0bdcbe1d46e931ce0ff129428bd

    • SHA256

      4b0aa385ce245b19042933149eeec8416a320f12e21fa27d302d0b23b33d42ed

    • SHA512

      c6fbf6bdd920c947f2b10585caad7340828029124466acfadd800c14d55c582ca5dd762918494c83841717e72cc524c8c89f77b219441c01a2ee00866c86f4c1

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO58:ZVxkGOtEvwDpjcG

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks