Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-18_ca1978a5827778677c7891a7d73fa8e7_cryptolocker

  • Size

    80KB

  • Sample

    240318-xc5kjafd72

  • MD5

    ca1978a5827778677c7891a7d73fa8e7

  • SHA1

    7bca40a89577497c4b09af79323ea7aea0073bcb

  • SHA256

    df175b8409d19a32403cdf2dcc5924287363548c10091ffe3a71487732f4833e

  • SHA512

    6a5fab086570a0deb60d30a06e612eff62e88e1319a4bb2ff65f3372814598813f67f2ccd4daf62ed29f6a9f4d569a5619d7f6c9207dc888af6b41d77e5c4572

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAF:TCjsIOtEvwDpj5HE/OUHnSMi

Score
10/10

Malware Config

Targets

    • Target

      2024-03-18_ca1978a5827778677c7891a7d73fa8e7_cryptolocker

    • Size

      80KB

    • MD5

      ca1978a5827778677c7891a7d73fa8e7

    • SHA1

      7bca40a89577497c4b09af79323ea7aea0073bcb

    • SHA256

      df175b8409d19a32403cdf2dcc5924287363548c10091ffe3a71487732f4833e

    • SHA512

      6a5fab086570a0deb60d30a06e612eff62e88e1319a4bb2ff65f3372814598813f67f2ccd4daf62ed29f6a9f4d569a5619d7f6c9207dc888af6b41d77e5c4572

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAF:TCjsIOtEvwDpj5HE/OUHnSMi

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks