Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker

  • Size

    42KB

  • Sample

    240417-et978sde23

  • MD5

    d9d623f0e34db6561de417c277793542

  • SHA1

    25299f307aed1a318ee838028b5336d176eb399c

  • SHA256

    0f0a748f4db21e1c7f6fa9eeafe72501e6ee304cf3c5802e11fecec7166c6b37

  • SHA512

    8cd5b6d4f5d59614d8ee8a0ce034cc18ea0d789587428cf2d0df950bb59a7a7f467c502d965af2b8cb2a592ffc25f62044ee0939f0bfb2f9d470db1253d5455a

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU3:bm74zYcgT/Ekn0ryfjC

Score
10/10

Malware Config

Targets

    • Target

      2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker

    • Size

      42KB

    • MD5

      d9d623f0e34db6561de417c277793542

    • SHA1

      25299f307aed1a318ee838028b5336d176eb399c

    • SHA256

      0f0a748f4db21e1c7f6fa9eeafe72501e6ee304cf3c5802e11fecec7166c6b37

    • SHA512

      8cd5b6d4f5d59614d8ee8a0ce034cc18ea0d789587428cf2d0df950bb59a7a7f467c502d965af2b8cb2a592ffc25f62044ee0939f0bfb2f9d470db1253d5455a

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU3:bm74zYcgT/Ekn0ryfjC

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks