Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-06_7e2698b183345f1e395922e49de36c79_cryptolocker

  • Size

    43KB

  • Sample

    240306-jah2vsea7s

  • MD5

    7e2698b183345f1e395922e49de36c79

  • SHA1

    36f2432e2fbd6d8fdca61c462f0b118bae243ab8

  • SHA256

    399500b72f1db660b195a014b29705dc0c8d59f173063eb0fabaf99d9ff72af3

  • SHA512

    4429062aeb7e1568e45e7aef6f3c884df5bd959f089f4b6a658e2900fc083aa0a5ae3f1412a8f59494010b5d97a9b6beea79a7edf2cfbc5c5726544096004933

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm+Ml:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+w

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_7e2698b183345f1e395922e49de36c79_cryptolocker

    • Size

      43KB

    • MD5

      7e2698b183345f1e395922e49de36c79

    • SHA1

      36f2432e2fbd6d8fdca61c462f0b118bae243ab8

    • SHA256

      399500b72f1db660b195a014b29705dc0c8d59f173063eb0fabaf99d9ff72af3

    • SHA512

      4429062aeb7e1568e45e7aef6f3c884df5bd959f089f4b6a658e2900fc083aa0a5ae3f1412a8f59494010b5d97a9b6beea79a7edf2cfbc5c5726544096004933

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm+Ml:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+w

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks