Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-28_1760e58c5a53227526fbd15f9ceefe12_cryptolocker

  • Size

    39KB

  • Sample

    240328-nk3w8sbc61

  • MD5

    1760e58c5a53227526fbd15f9ceefe12

  • SHA1

    495827a90bf38fb80ca02c0410ddb8b59a7d8f60

  • SHA256

    309a8af48c6763f2f4ed3c1574e1800177f00254c036201f36f799a49c391791

  • SHA512

    8884e48432c2b36196c1f78bacd2709fa427c177bd95868648dd900b81ea5e2077ab5698a6a3f897f43e4a0dfeb78131bbeb4e57b35c856e71db31c40aabc849

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axe3q:V6QFElP6n+gMQMOtEvwDpjyaYa+q

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_1760e58c5a53227526fbd15f9ceefe12_cryptolocker

    • Size

      39KB

    • MD5

      1760e58c5a53227526fbd15f9ceefe12

    • SHA1

      495827a90bf38fb80ca02c0410ddb8b59a7d8f60

    • SHA256

      309a8af48c6763f2f4ed3c1574e1800177f00254c036201f36f799a49c391791

    • SHA512

      8884e48432c2b36196c1f78bacd2709fa427c177bd95868648dd900b81ea5e2077ab5698a6a3f897f43e4a0dfeb78131bbeb4e57b35c856e71db31c40aabc849

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axe3q:V6QFElP6n+gMQMOtEvwDpjyaYa+q

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks