Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-16_30c17745d47cba796a4af0c885e6a2ad_cryptolocker

  • Size

    95KB

  • Sample

    240316-gvhwgsde2s

  • MD5

    30c17745d47cba796a4af0c885e6a2ad

  • SHA1

    55e4a1930b612844694f45896b98f57a2b3f9da4

  • SHA256

    6d78d2c984f1fcc952b83bc188f4464998fe406b987892fb6b9e0740a7fd72d4

  • SHA512

    7c41fae35a8911ce22edc3a77b8169f3902b0b4c84c4b91d68bfb52ab3e7f5106602384812bff393b4f189dda6daf89c10a5f74abc9f8ad973e6825e004606be

  • SSDEEP

    1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4w7:Z6a+pOtEvwDpjtz2

Score
10/10

Malware Config

Targets

    • Target

      2024-03-16_30c17745d47cba796a4af0c885e6a2ad_cryptolocker

    • Size

      95KB

    • MD5

      30c17745d47cba796a4af0c885e6a2ad

    • SHA1

      55e4a1930b612844694f45896b98f57a2b3f9da4

    • SHA256

      6d78d2c984f1fcc952b83bc188f4464998fe406b987892fb6b9e0740a7fd72d4

    • SHA512

      7c41fae35a8911ce22edc3a77b8169f3902b0b4c84c4b91d68bfb52ab3e7f5106602384812bff393b4f189dda6daf89c10a5f74abc9f8ad973e6825e004606be

    • SSDEEP

      1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4w7:Z6a+pOtEvwDpjtz2

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks