Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-11_a2786f2fb148260422762bf805f04f99_cryptolocker

  • Size

    122KB

  • Sample

    240411-jkknfaeh87

  • MD5

    a2786f2fb148260422762bf805f04f99

  • SHA1

    5c19fdb478fb56c154679f99860d619d73e33d56

  • SHA256

    fa0e54a543b4ff39baffe7c8aaa17a54c9c855b41f63443369a3294c898cc0de

  • SHA512

    5dddeb4beb57a445f56363cea97c13c7389f488a283cc6ca3b82c519fdbea67b1d956c7acf974c9308692ed7f5857ad49c3aa3a922e22b7a60349e66c967a1e5

  • SSDEEP

    1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwMgP:u6a++OtEvwDpj6zL

Score
10/10

Malware Config

Targets

    • Target

      2024-04-11_a2786f2fb148260422762bf805f04f99_cryptolocker

    • Size

      122KB

    • MD5

      a2786f2fb148260422762bf805f04f99

    • SHA1

      5c19fdb478fb56c154679f99860d619d73e33d56

    • SHA256

      fa0e54a543b4ff39baffe7c8aaa17a54c9c855b41f63443369a3294c898cc0de

    • SHA512

      5dddeb4beb57a445f56363cea97c13c7389f488a283cc6ca3b82c519fdbea67b1d956c7acf974c9308692ed7f5857ad49c3aa3a922e22b7a60349e66c967a1e5

    • SSDEEP

      1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwMgP:u6a++OtEvwDpj6zL

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks