Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-27_212790e50cbea0610a27abe72ded886e_cryptolocker

  • Size

    78KB

  • Sample

    240327-txvdhsfh64

  • MD5

    212790e50cbea0610a27abe72ded886e

  • SHA1

    1767d2817ffdfe6771f943182f105e1add8576c5

  • SHA256

    3203eb9cb96014029188d05fb4e81ac6db1391fb0a0d8c9262a7ba76571d1e86

  • SHA512

    226d78936d42dcad01a6e52627180cd218012455f3596e8520389301ad2f5ccc73249be403ca14051f255ae672b80ae9c4d08889d660bb8649244e0ab205f189

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuf0:vCjsIOtEvwDpj5H9YvQd2w

Score
10/10

Malware Config

Targets

    • Target

      2024-03-27_212790e50cbea0610a27abe72ded886e_cryptolocker

    • Size

      78KB

    • MD5

      212790e50cbea0610a27abe72ded886e

    • SHA1

      1767d2817ffdfe6771f943182f105e1add8576c5

    • SHA256

      3203eb9cb96014029188d05fb4e81ac6db1391fb0a0d8c9262a7ba76571d1e86

    • SHA512

      226d78936d42dcad01a6e52627180cd218012455f3596e8520389301ad2f5ccc73249be403ca14051f255ae672b80ae9c4d08889d660bb8649244e0ab205f189

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuf0:vCjsIOtEvwDpj5H9YvQd2w

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks