Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-05_bf7cbbdafe86f694bc575de80e8d3b3a_cryptolocker

  • Size

    54KB

  • Sample

    240405-zkfmgsda6y

  • MD5

    bf7cbbdafe86f694bc575de80e8d3b3a

  • SHA1

    c6aa29fece80c0e0615e07460de47bac10f9b611

  • SHA256

    0cce5199517f0107bd1528c62cc6d7b29fa846bb05ad3b980296d832614486b9

  • SHA512

    fd9ff9a73a597eaaf43109c1daaa03819bbe8ea675d34f67285ce78e24c20e013a267ef7ab0a4f9cd474804e74534385a669ee0bfcc383b89169eb42e87a7d83

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakl8eys:V6a+pOtEvwDpj8

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_bf7cbbdafe86f694bc575de80e8d3b3a_cryptolocker

    • Size

      54KB

    • MD5

      bf7cbbdafe86f694bc575de80e8d3b3a

    • SHA1

      c6aa29fece80c0e0615e07460de47bac10f9b611

    • SHA256

      0cce5199517f0107bd1528c62cc6d7b29fa846bb05ad3b980296d832614486b9

    • SHA512

      fd9ff9a73a597eaaf43109c1daaa03819bbe8ea675d34f67285ce78e24c20e013a267ef7ab0a4f9cd474804e74534385a669ee0bfcc383b89169eb42e87a7d83

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakl8eys:V6a+pOtEvwDpj8

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks