Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-08_2bb52d3ae931601bc2a8be3b4ded38e8_cryptolocker

  • Size

    35KB

  • Sample

    240408-w4eyhsbc8w

  • MD5

    2bb52d3ae931601bc2a8be3b4ded38e8

  • SHA1

    dd26e27d3380d5124cc8455af7f8a7ad0b5207c9

  • SHA256

    b3a8831825850c96296b5ef2e15610fb4475b51c95507bed31a294722f157b94

  • SHA512

    0775e1c7b62d2384a9d6abccaa3290982e524f97c064550d71d3db03f78c6fb95de14460242eec4b5287636119dc178d84ece488f9619b7b57b34cd4656160c5

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4r:fT+hsMQMOtEvwDpjoIHr

Score
10/10

Malware Config

Targets

    • Target

      2024-04-08_2bb52d3ae931601bc2a8be3b4ded38e8_cryptolocker

    • Size

      35KB

    • MD5

      2bb52d3ae931601bc2a8be3b4ded38e8

    • SHA1

      dd26e27d3380d5124cc8455af7f8a7ad0b5207c9

    • SHA256

      b3a8831825850c96296b5ef2e15610fb4475b51c95507bed31a294722f157b94

    • SHA512

      0775e1c7b62d2384a9d6abccaa3290982e524f97c064550d71d3db03f78c6fb95de14460242eec4b5287636119dc178d84ece488f9619b7b57b34cd4656160c5

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4r:fT+hsMQMOtEvwDpjoIHr

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks