Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-08_a61e41f58450658f5edea9067c8dc00d_cryptolocker

  • Size

    96KB

  • Sample

    240308-2fhmdshc28

  • MD5

    a61e41f58450658f5edea9067c8dc00d

  • SHA1

    458a6eaa7f336be6406be60f611255866086740a

  • SHA256

    b046b3814f4653af0d36283f04590649d9444f845cff09b5339e77535299fbb8

  • SHA512

    f9a4c229c9ec72bdd617d7d3006edd9dd097f13bc81fdbbacf270fd083e7c0a3cc56bcc1cea0c1ea712398be268e93afed5707477fbb69820c3b975a86c2981a

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpwwO:V6a+pOtEvwDpjtzj

Score
10/10

Malware Config

Targets

    • Target

      2024-03-08_a61e41f58450658f5edea9067c8dc00d_cryptolocker

    • Size

      96KB

    • MD5

      a61e41f58450658f5edea9067c8dc00d

    • SHA1

      458a6eaa7f336be6406be60f611255866086740a

    • SHA256

      b046b3814f4653af0d36283f04590649d9444f845cff09b5339e77535299fbb8

    • SHA512

      f9a4c229c9ec72bdd617d7d3006edd9dd097f13bc81fdbbacf270fd083e7c0a3cc56bcc1cea0c1ea712398be268e93afed5707477fbb69820c3b975a86c2981a

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpwwO:V6a+pOtEvwDpjtzj

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks