Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-10_ea9ea9b2f9d4ed8479984a82000fd3a6_cryptolocker

  • Size

    57KB

  • Sample

    240310-hbaw7sec95

  • MD5

    ea9ea9b2f9d4ed8479984a82000fd3a6

  • SHA1

    b2fe35579815e65dc183c79d171ea05a6743229d

  • SHA256

    1217ef4a62a195218248d9a5c1c191203b4a5a4d14859e6de5d62ff828fcc80e

  • SHA512

    7c2edf4fcbe6b0cdfe56996518c42017d9223c419547427b75278f74d188120a96663bfd3a870786b4364563d8b194d16e178555ffd01bdb32954a1e9192bba1

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLlH9xoI:X6a+SOtEvwDpjBrOd

Score
10/10

Malware Config

Targets

    • Target

      2024-03-10_ea9ea9b2f9d4ed8479984a82000fd3a6_cryptolocker

    • Size

      57KB

    • MD5

      ea9ea9b2f9d4ed8479984a82000fd3a6

    • SHA1

      b2fe35579815e65dc183c79d171ea05a6743229d

    • SHA256

      1217ef4a62a195218248d9a5c1c191203b4a5a4d14859e6de5d62ff828fcc80e

    • SHA512

      7c2edf4fcbe6b0cdfe56996518c42017d9223c419547427b75278f74d188120a96663bfd3a870786b4364563d8b194d16e178555ffd01bdb32954a1e9192bba1

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLlH9xoI:X6a+SOtEvwDpjBrOd

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks