Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-15_83c3245bdb2cf3de03175ce1e8464cfc_cryptolocker

  • Size

    389KB

  • Sample

    240415-yhkb8aee86

  • MD5

    83c3245bdb2cf3de03175ce1e8464cfc

  • SHA1

    6ec4d19c27dcd1b78ed05bc89d4fbe88563ea79c

  • SHA256

    22ce1309330d4969a5b4383908f7673278b5f2605470c6bf1d9fd92661bb7ec6

  • SHA512

    2bdf2ca27ef5016f4f13b34108c17c4bc3b56e5daa0928fa88e698a190eb664bff2f23b55e937243ec0439e6b51dcadbfc77da31f74b8cde26c8af15534ba1cf

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXO:nnOflT/ZFIjBz3xjTxynGUOUhXO

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_83c3245bdb2cf3de03175ce1e8464cfc_cryptolocker

    • Size

      389KB

    • MD5

      83c3245bdb2cf3de03175ce1e8464cfc

    • SHA1

      6ec4d19c27dcd1b78ed05bc89d4fbe88563ea79c

    • SHA256

      22ce1309330d4969a5b4383908f7673278b5f2605470c6bf1d9fd92661bb7ec6

    • SHA512

      2bdf2ca27ef5016f4f13b34108c17c4bc3b56e5daa0928fa88e698a190eb664bff2f23b55e937243ec0439e6b51dcadbfc77da31f74b8cde26c8af15534ba1cf

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXO:nnOflT/ZFIjBz3xjTxynGUOUhXO

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks