Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-27_5147cee8ed5c9ddf26b53b3ea1ab959d_cryptolocker

  • Size

    74KB

  • Sample

    240327-d9mansbh83

  • MD5

    5147cee8ed5c9ddf26b53b3ea1ab959d

  • SHA1

    31f57e2c98f87ed90fbb17ef96e64e6ccafe98d4

  • SHA256

    c1a14f34a1203fa840f0aedb97b73da7a2bdaa7a57bdf070868c23e66d025931

  • SHA512

    aa0b95913dec6b32db3f6e239f0eff5a06cdefa9edbe5d2b232e033073b6b6c30e8968fff9b63b267e3d94197f4949d16234c7b4012321eae2b9291f98e4334c

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1s5:X6a+SOtEvwDpjBZYvQd22

Score
10/10

Malware Config

Targets

    • Target

      2024-03-27_5147cee8ed5c9ddf26b53b3ea1ab959d_cryptolocker

    • Size

      74KB

    • MD5

      5147cee8ed5c9ddf26b53b3ea1ab959d

    • SHA1

      31f57e2c98f87ed90fbb17ef96e64e6ccafe98d4

    • SHA256

      c1a14f34a1203fa840f0aedb97b73da7a2bdaa7a57bdf070868c23e66d025931

    • SHA512

      aa0b95913dec6b32db3f6e239f0eff5a06cdefa9edbe5d2b232e033073b6b6c30e8968fff9b63b267e3d94197f4949d16234c7b4012321eae2b9291f98e4334c

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1s5:X6a+SOtEvwDpjBZYvQd22

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks