Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-06_e97d644d06d759731f445e873a66fdc8_cryptolocker

  • Size

    59KB

  • Sample

    240406-dhbpvshe7w

  • MD5

    e97d644d06d759731f445e873a66fdc8

  • SHA1

    3566c8388f420f31f6188e76275f19f7e0b376fb

  • SHA256

    0843fe0d6d924bdad09008a528ba2dbc3f1cdbacae60631ca01d7355c9829f29

  • SHA512

    e734fa1e1655365bee061237b7dc93a9302d239490f4724d17cc3faefb85bb6f45837b509e23a853a2c2e4b321534fab379c263116bb9bf4e6db9394e624029f

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtng:V6a+pOtEvwDpjvj

Score
10/10

Malware Config

Targets

    • Target

      2024-04-06_e97d644d06d759731f445e873a66fdc8_cryptolocker

    • Size

      59KB

    • MD5

      e97d644d06d759731f445e873a66fdc8

    • SHA1

      3566c8388f420f31f6188e76275f19f7e0b376fb

    • SHA256

      0843fe0d6d924bdad09008a528ba2dbc3f1cdbacae60631ca01d7355c9829f29

    • SHA512

      e734fa1e1655365bee061237b7dc93a9302d239490f4724d17cc3faefb85bb6f45837b509e23a853a2c2e4b321534fab379c263116bb9bf4e6db9394e624029f

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbtng:V6a+pOtEvwDpjvj

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks