Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-29_6bb0b68534d4d640aa3d03e66841e20d_cryptolocker

  • Size

    73KB

  • Sample

    240329-dhr2vaga9t

  • MD5

    6bb0b68534d4d640aa3d03e66841e20d

  • SHA1

    6734b7cb14c8aedaf5662abf87356ebab41afa9d

  • SHA256

    472ce7b28e3ffdc67f07b84b3b9b227f05fa813f9363bb976bb8a0ae2f16ba80

  • SHA512

    e004bf776192385702e2097accbfb45c61e1b9b575cdc9b19bd505f988023b607f164f44f624f3ca31887ffdda502b50b97d7cac17ad879b533a0c1643fa55f6

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHMk:X6a+SOtEvwDpjBZYvQd2L

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_6bb0b68534d4d640aa3d03e66841e20d_cryptolocker

    • Size

      73KB

    • MD5

      6bb0b68534d4d640aa3d03e66841e20d

    • SHA1

      6734b7cb14c8aedaf5662abf87356ebab41afa9d

    • SHA256

      472ce7b28e3ffdc67f07b84b3b9b227f05fa813f9363bb976bb8a0ae2f16ba80

    • SHA512

      e004bf776192385702e2097accbfb45c61e1b9b575cdc9b19bd505f988023b607f164f44f624f3ca31887ffdda502b50b97d7cac17ad879b533a0c1643fa55f6

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHMk:X6a+SOtEvwDpjBZYvQd2L

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks