Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-15_03741861a5a8df6571698df7c245c76d_cryptolocker

  • Size

    78KB

  • Sample

    240315-ldsrksfa27

  • MD5

    03741861a5a8df6571698df7c245c76d

  • SHA1

    f3a92aeaa1efca3096dc4730cb72a5a2698daa28

  • SHA256

    663d7065693fd9eaa2c910190a9510eb1bd41c8732dbd3a34ba2c3b08e1213e2

  • SHA512

    55af579ce2c0490a30db731b894159692189f700a06d1f7746e3f33a3b85511c35142b055217f667c5414b4154fdc714e2433e275f2d590c5dae5901bf27b854

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafp:vCjsIOtEvwDpj5H9YvQd2N

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_03741861a5a8df6571698df7c245c76d_cryptolocker

    • Size

      78KB

    • MD5

      03741861a5a8df6571698df7c245c76d

    • SHA1

      f3a92aeaa1efca3096dc4730cb72a5a2698daa28

    • SHA256

      663d7065693fd9eaa2c910190a9510eb1bd41c8732dbd3a34ba2c3b08e1213e2

    • SHA512

      55af579ce2c0490a30db731b894159692189f700a06d1f7746e3f33a3b85511c35142b055217f667c5414b4154fdc714e2433e275f2d590c5dae5901bf27b854

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafp:vCjsIOtEvwDpj5H9YvQd2N

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks