Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-29_10ec633b441d8113d2a82f3c9447a0c8_cryptolocker

  • Size

    50KB

  • Sample

    240329-a1rx1sde52

  • MD5

    10ec633b441d8113d2a82f3c9447a0c8

  • SHA1

    d56b3cc0fea8f6626754b0011563151628ca97c5

  • SHA256

    d873f8992b552618fe86244832ab1b79b975156a2ee1ebb8e42f3fa9ae8699d5

  • SHA512

    923214b0786231a2d39cf337583d4d215edc512111afeb6d8f78fabe0a1a820095f0d1b993970c08385b609d421e94e10b4673f3a726e74fc8554d9f4ddf561d

  • SSDEEP

    768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSO/m:bgGYcA/53GAA6y37Q6dI+d5Gm

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_10ec633b441d8113d2a82f3c9447a0c8_cryptolocker

    • Size

      50KB

    • MD5

      10ec633b441d8113d2a82f3c9447a0c8

    • SHA1

      d56b3cc0fea8f6626754b0011563151628ca97c5

    • SHA256

      d873f8992b552618fe86244832ab1b79b975156a2ee1ebb8e42f3fa9ae8699d5

    • SHA512

      923214b0786231a2d39cf337583d4d215edc512111afeb6d8f78fabe0a1a820095f0d1b993970c08385b609d421e94e10b4673f3a726e74fc8554d9f4ddf561d

    • SSDEEP

      768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSO/m:bgGYcA/53GAA6y37Q6dI+d5Gm

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks