Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-10_66e48d958cf1df75e189b5981a0707ed_cryptolocker

  • Size

    41KB

  • Sample

    240310-gqjl8adf84

  • MD5

    66e48d958cf1df75e189b5981a0707ed

  • SHA1

    65f168787552b3b77a0f194e6fbf770b0a25458a

  • SHA256

    1a2f823fb70771604658099829781215e74da70e532fd8540f6be2afb7cd5df6

  • SHA512

    b48d79686a6789f1ee0dc2e1284fc03a987b76e9362e1493739b2389c8e6a04b0a18f0a6821f17661b99b86844c5c2dad63cea91c24fb52a63eb47040608d03f

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZnzh+:btB9g/WItCSsAGjX7e9N0hunrknY

Score
10/10

Malware Config

Targets

    • Target

      2024-03-10_66e48d958cf1df75e189b5981a0707ed_cryptolocker

    • Size

      41KB

    • MD5

      66e48d958cf1df75e189b5981a0707ed

    • SHA1

      65f168787552b3b77a0f194e6fbf770b0a25458a

    • SHA256

      1a2f823fb70771604658099829781215e74da70e532fd8540f6be2afb7cd5df6

    • SHA512

      b48d79686a6789f1ee0dc2e1284fc03a987b76e9362e1493739b2389c8e6a04b0a18f0a6821f17661b99b86844c5c2dad63cea91c24fb52a63eb47040608d03f

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZnzh+:btB9g/WItCSsAGjX7e9N0hunrknY

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks