Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-06_402f2e33f3a863508492018397bf3577_cryptolocker

  • Size

    89KB

  • Sample

    240406-rd6akaca2y

  • MD5

    402f2e33f3a863508492018397bf3577

  • SHA1

    4670c93571a3232e9828d360599713af59d82b6f

  • SHA256

    94f2ef2d8ea0aff6bc9b15771e5599a5c932e3bc6cfd6ef6cd756e9b3f6148b5

  • SHA512

    7b8bb839a5f4680175d5533577ad583f285a95eda5cf47c1d1bb0ef2d57b5bd1ff72c213e926c61f118ad2d8ddd46a187d4fc2d6aac7b7f0698d30f8cf9450e5

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoV:vCjsIOtEvwDpj5H8zPsa

Score
10/10

Malware Config

Targets

    • Target

      2024-04-06_402f2e33f3a863508492018397bf3577_cryptolocker

    • Size

      89KB

    • MD5

      402f2e33f3a863508492018397bf3577

    • SHA1

      4670c93571a3232e9828d360599713af59d82b6f

    • SHA256

      94f2ef2d8ea0aff6bc9b15771e5599a5c932e3bc6cfd6ef6cd756e9b3f6148b5

    • SHA512

      7b8bb839a5f4680175d5533577ad583f285a95eda5cf47c1d1bb0ef2d57b5bd1ff72c213e926c61f118ad2d8ddd46a187d4fc2d6aac7b7f0698d30f8cf9450e5

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoV:vCjsIOtEvwDpj5H8zPsa

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks