Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker

  • Size

    58KB

  • Sample

    240314-jszsbsec8t

  • MD5

    f68e31334973f3e3c0b06329c6f4e30e

  • SHA1

    98272bed2ded77ec76a118d2f83107be00ebbfb2

  • SHA256

    acb527b8e5715ab4b54e03e3cb770eef49d601ce623e971bf00c7cab1fa69242

  • SHA512

    8557c82d4c6df3693325042e4a1aabd16116ca9eb267473640e7e2470b82da8a6536e64eb3e1bdbc4375188e02f5f4041002dbb05c6875fffad9b8f1cee62ac2

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMYG:TCjsIOtEvwDpj5HE/OUHnSMW

Score
10/10

Malware Config

Targets

    • Target

      2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker

    • Size

      58KB

    • MD5

      f68e31334973f3e3c0b06329c6f4e30e

    • SHA1

      98272bed2ded77ec76a118d2f83107be00ebbfb2

    • SHA256

      acb527b8e5715ab4b54e03e3cb770eef49d601ce623e971bf00c7cab1fa69242

    • SHA512

      8557c82d4c6df3693325042e4a1aabd16116ca9eb267473640e7e2470b82da8a6536e64eb3e1bdbc4375188e02f5f4041002dbb05c6875fffad9b8f1cee62ac2

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMYG:TCjsIOtEvwDpj5HE/OUHnSMW

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks