Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-05_d9b30c92f2c7f92a666c702d572e6a73_cryptolocker

  • Size

    42KB

  • Sample

    240405-yfs7cacf82

  • MD5

    d9b30c92f2c7f92a666c702d572e6a73

  • SHA1

    1d804c3d966caa28db785c08132494d5b13553cc

  • SHA256

    49c523fcbd9807019b7341e8adf9968bd40821a9170c9b87427c2f24a47655c2

  • SHA512

    4fb9304b4aadfe05bf3402b8343f3ea49d71f3b575064a5bc97802391f35f2d7933c4d11e92b9555cd4cef89ca92ce98babf02f9442ee44c48057bedbac63bdb

  • SSDEEP

    768:bAvJCYOOvbRPDEgXrNekd7l94i3p+OMD6:bAvJCF+RQgJeab4sxR

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_d9b30c92f2c7f92a666c702d572e6a73_cryptolocker

    • Size

      42KB

    • MD5

      d9b30c92f2c7f92a666c702d572e6a73

    • SHA1

      1d804c3d966caa28db785c08132494d5b13553cc

    • SHA256

      49c523fcbd9807019b7341e8adf9968bd40821a9170c9b87427c2f24a47655c2

    • SHA512

      4fb9304b4aadfe05bf3402b8343f3ea49d71f3b575064a5bc97802391f35f2d7933c4d11e92b9555cd4cef89ca92ce98babf02f9442ee44c48057bedbac63bdb

    • SSDEEP

      768:bAvJCYOOvbRPDEgXrNekd7l94i3p+OMD6:bAvJCF+RQgJeab4sxR

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks