Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker

  • Size

    106KB

  • Sample

    240411-kwc86sbc6x

  • MD5

    d825ee1f5ff96a0ae17360ceff1035f7

  • SHA1

    03a2e66a67b600723bd93bb2743fcc6f298baa2f

  • SHA256

    a0d9d0fc5288597e3cf64673dc53d6577f6056b2f822c1324931b509ec9c8654

  • SHA512

    53df2835c126a963fbce4048b82c3f90b603d329ecc0a0f6cc9f58db443d6ee5bb1e0fcd9e12bc58bd0c1781d6d72917c0632fd0a89047ef8747f0699643dbe6

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpQbCJh5:V6a+pOtEvwDpjtzw

Score
10/10

Malware Config

Targets

    • Target

      2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker

    • Size

      106KB

    • MD5

      d825ee1f5ff96a0ae17360ceff1035f7

    • SHA1

      03a2e66a67b600723bd93bb2743fcc6f298baa2f

    • SHA256

      a0d9d0fc5288597e3cf64673dc53d6577f6056b2f822c1324931b509ec9c8654

    • SHA512

      53df2835c126a963fbce4048b82c3f90b603d329ecc0a0f6cc9f58db443d6ee5bb1e0fcd9e12bc58bd0c1781d6d72917c0632fd0a89047ef8747f0699643dbe6

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpQbCJh5:V6a+pOtEvwDpjtzw

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks