Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-26_4d1fecfeca4560d0787990d213a5b9f8_cryptolocker

  • Size

    33KB

  • Sample

    240326-f9e8gadc55

  • MD5

    4d1fecfeca4560d0787990d213a5b9f8

  • SHA1

    49e572d61e9a26a57113db6e8b5b11902c2983ef

  • SHA256

    4a1cb0a2d6908293a60a37caf0f0e55bd85775d52d0447a7d8c593d83798c81a

  • SHA512

    7c68316b07de113fa5a73090e9f1ed02388471053dc6bbba899e86ccc911d312fe0d75a5214931bdd50591ecf642c53b8aaaa34ce82f19ceaa248bdb15869d1f

  • SSDEEP

    384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6ckJp0qAgmEzXKxA+T63:bAvJCYOOvbRPDEgXRc+BAILiy

Score
10/10

Malware Config

Targets

    • Target

      2024-03-26_4d1fecfeca4560d0787990d213a5b9f8_cryptolocker

    • Size

      33KB

    • MD5

      4d1fecfeca4560d0787990d213a5b9f8

    • SHA1

      49e572d61e9a26a57113db6e8b5b11902c2983ef

    • SHA256

      4a1cb0a2d6908293a60a37caf0f0e55bd85775d52d0447a7d8c593d83798c81a

    • SHA512

      7c68316b07de113fa5a73090e9f1ed02388471053dc6bbba899e86ccc911d312fe0d75a5214931bdd50591ecf642c53b8aaaa34ce82f19ceaa248bdb15869d1f

    • SSDEEP

      384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6ckJp0qAgmEzXKxA+T63:bAvJCYOOvbRPDEgXRc+BAILiy

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks