Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-05_002b8f06e3a17fe2e11c8f4a98b519b9_cryptolocker

  • Size

    33KB

  • Sample

    240405-dx183aah6z

  • MD5

    002b8f06e3a17fe2e11c8f4a98b519b9

  • SHA1

    588a0dd8e589db6e4747063b9203f52c82bec6bf

  • SHA256

    454ece330cc86117b460bacba94aa486423960fede869170443aa2ac10728449

  • SHA512

    865ad6e706219888ae1c441bff36d8425d3f4cbf1ebbc19bb5cc97b3a9180b6c3f3d605900ea692867b524b45327ea00afa65d0ba449f8981b30dd4ab7637ff6

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznUsD5h5:b/yC4GyNM01GuQMNXw2PSjZ/5

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_002b8f06e3a17fe2e11c8f4a98b519b9_cryptolocker

    • Size

      33KB

    • MD5

      002b8f06e3a17fe2e11c8f4a98b519b9

    • SHA1

      588a0dd8e589db6e4747063b9203f52c82bec6bf

    • SHA256

      454ece330cc86117b460bacba94aa486423960fede869170443aa2ac10728449

    • SHA512

      865ad6e706219888ae1c441bff36d8425d3f4cbf1ebbc19bb5cc97b3a9180b6c3f3d605900ea692867b524b45327ea00afa65d0ba449f8981b30dd4ab7637ff6

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznUsD5h5:b/yC4GyNM01GuQMNXw2PSjZ/5

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks