Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-19_9bb52440893b084b6059360d9c9b692c_cryptolocker

  • Size

    82KB

  • Sample

    240319-va9elagg99

  • MD5

    9bb52440893b084b6059360d9c9b692c

  • SHA1

    8494ccc925f521f833083d249d9cbcc6b6265262

  • SHA256

    3f7bc4a545ff3b0a1d5d933219b551b6d9267123db50a44b12064f4581fccdb9

  • SHA512

    39380b11be1a3eb46e905ec76057188f8fb791963c46352e8ab7ca22af52fbd8aed47069b68183a74f4f9255082670601d244110037142c909bd6db9b4cea550

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNB8:vCjsIOtEvwDpj5H9YvQd2U

Score
10/10

Malware Config

Targets

    • Target

      2024-03-19_9bb52440893b084b6059360d9c9b692c_cryptolocker

    • Size

      82KB

    • MD5

      9bb52440893b084b6059360d9c9b692c

    • SHA1

      8494ccc925f521f833083d249d9cbcc6b6265262

    • SHA256

      3f7bc4a545ff3b0a1d5d933219b551b6d9267123db50a44b12064f4581fccdb9

    • SHA512

      39380b11be1a3eb46e905ec76057188f8fb791963c46352e8ab7ca22af52fbd8aed47069b68183a74f4f9255082670601d244110037142c909bd6db9b4cea550

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNB8:vCjsIOtEvwDpj5H9YvQd2U

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks