Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-14_f5d07a6fe867476e0fa191cb58871661_cryptolocker

  • Size

    5.5MB

  • Sample

    240314-gw6nyaef88

  • MD5

    f5d07a6fe867476e0fa191cb58871661

  • SHA1

    0fdc4797214a9a5fed3edd45c28475f95df06482

  • SHA256

    eb27a88f8463de21738a4b1e624b9fd0c882f7d9207cb1346e6297960cfb0cae

  • SHA512

    d44c29dcf7ec70aad03e6be199d2e58106852bf94c427ad1176a629bc14b26d332f94f2ac594e4d8ca9a890411cb4f0d7b60845da8c283a16d16e30fddce7225

  • SSDEEP

    98304:tGiPCjI9nGdFD8nBHm/lOs4HucAmD/YpJJRsH9KsUbIP8Z/AzdKfeT1:fP7aa3uzmD/IJR09KbMPkT01

Score
10/10

Malware Config

Targets

    • Target

      2024-03-14_f5d07a6fe867476e0fa191cb58871661_cryptolocker

    • Size

      5.5MB

    • MD5

      f5d07a6fe867476e0fa191cb58871661

    • SHA1

      0fdc4797214a9a5fed3edd45c28475f95df06482

    • SHA256

      eb27a88f8463de21738a4b1e624b9fd0c882f7d9207cb1346e6297960cfb0cae

    • SHA512

      d44c29dcf7ec70aad03e6be199d2e58106852bf94c427ad1176a629bc14b26d332f94f2ac594e4d8ca9a890411cb4f0d7b60845da8c283a16d16e30fddce7225

    • SSDEEP

      98304:tGiPCjI9nGdFD8nBHm/lOs4HucAmD/YpJJRsH9KsUbIP8Z/AzdKfeT1:fP7aa3uzmD/IJR09KbMPkT01

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks