Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-11_528c37623e938082c874e137ae4f9559_cryptolocker

  • Size

    61KB

  • Sample

    240311-ga8amsdd5s

  • MD5

    528c37623e938082c874e137ae4f9559

  • SHA1

    6af49461012dcb36c7a8537c9f907cbe97f0dda4

  • SHA256

    9b5762531708d403ade873c446c34677f24dc5ae947480731a10bc5a839b1a7c

  • SHA512

    dbf148617717e455adda1ab2cb3957d1c350f5028b0e11b7235dfefe9d0a0fa944e049d62e9eb5fff3ad70219a76fa190d932eab520cd4fa88a859568df64454

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMEjT:TCjsIOtEvwDpj5HE/OUHnSMZ

Score
10/10

Malware Config

Targets

    • Target

      2024-03-11_528c37623e938082c874e137ae4f9559_cryptolocker

    • Size

      61KB

    • MD5

      528c37623e938082c874e137ae4f9559

    • SHA1

      6af49461012dcb36c7a8537c9f907cbe97f0dda4

    • SHA256

      9b5762531708d403ade873c446c34677f24dc5ae947480731a10bc5a839b1a7c

    • SHA512

      dbf148617717e455adda1ab2cb3957d1c350f5028b0e11b7235dfefe9d0a0fa944e049d62e9eb5fff3ad70219a76fa190d932eab520cd4fa88a859568df64454

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMEjT:TCjsIOtEvwDpj5HE/OUHnSMZ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks