Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-16_e8961213188e697df2f2601505a5ef8f_cryptolocker

  • Size

    47KB

  • Sample

    240316-l1rg2aaf66

  • MD5

    e8961213188e697df2f2601505a5ef8f

  • SHA1

    cd8e02566f530ffcf9ef457349f308d04248e7c8

  • SHA256

    3fc57906d505bfd76350c3630ab23bf6fb9dc1e693ae3c53440aaca7b55fe3d4

  • SHA512

    b80ca0cdae0f63a3c620d5952e03c961f54affbd64d4a043d9f2b0539fea2087507c54403de2fb83dee978909db9f1563c9e710f2c7a39484dbc5a08beffdab6

  • SSDEEP

    768:btB9g/WItCSsAGjX7r3BPOMHoc/QQJP5wjvaHYwiN:btB9g/xtCSKfxLIc/E1d

Score
10/10

Malware Config

Targets

    • Target

      2024-03-16_e8961213188e697df2f2601505a5ef8f_cryptolocker

    • Size

      47KB

    • MD5

      e8961213188e697df2f2601505a5ef8f

    • SHA1

      cd8e02566f530ffcf9ef457349f308d04248e7c8

    • SHA256

      3fc57906d505bfd76350c3630ab23bf6fb9dc1e693ae3c53440aaca7b55fe3d4

    • SHA512

      b80ca0cdae0f63a3c620d5952e03c961f54affbd64d4a043d9f2b0539fea2087507c54403de2fb83dee978909db9f1563c9e710f2c7a39484dbc5a08beffdab6

    • SSDEEP

      768:btB9g/WItCSsAGjX7r3BPOMHoc/QQJP5wjvaHYwiN:btB9g/xtCSKfxLIc/E1d

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks