Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-15_3394368b6c2fa629885cc2e6c5fd3954_cryptolocker

  • Size

    41KB

  • Sample

    240415-gdxy3sga48

  • MD5

    3394368b6c2fa629885cc2e6c5fd3954

  • SHA1

    9313800290df548fd184da1837504235a827db74

  • SHA256

    325564231101bd6c31bce01c3a1f7d5804ac2b6da0a062eef34a94902775158a

  • SHA512

    a3ee26cd7ec4ab2559b9bdd58ccd467249a8fbdf546198cde119def339f8d222a2e1264aca80a9621e0bd81dcd187b55d94bcb8ea77252b9144d71fc1edec73b

  • SSDEEP

    768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAyj:bCDOw9aMDooc+vAyj

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_3394368b6c2fa629885cc2e6c5fd3954_cryptolocker

    • Size

      41KB

    • MD5

      3394368b6c2fa629885cc2e6c5fd3954

    • SHA1

      9313800290df548fd184da1837504235a827db74

    • SHA256

      325564231101bd6c31bce01c3a1f7d5804ac2b6da0a062eef34a94902775158a

    • SHA512

      a3ee26cd7ec4ab2559b9bdd58ccd467249a8fbdf546198cde119def339f8d222a2e1264aca80a9621e0bd81dcd187b55d94bcb8ea77252b9144d71fc1edec73b

    • SSDEEP

      768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAyj:bCDOw9aMDooc+vAyj

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks