Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker

  • Size

    80KB

  • Sample

    240417-ym1vrsdh7w

  • MD5

    ca4e2eb1d7c206fb0ce025fa5ec7638c

  • SHA1

    e9e9f71c907559f4a04b59603823ec293d7a035c

  • SHA256

    85e1faa1d8dd2ab9f474eb70d52e8250b10a88411c7ad248723b0373bec07267

  • SHA512

    7149af60ee28f3a262a88a01afa44f3c339dd5a0bc227c7c989397a1746ef1d850064565d01679b3e783326ead2a9c9304038980a35f2a9c5c3018a1d564d0cf

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqk:vCjsIOtEvwDpj5H9YvQd21

Score
10/10

Malware Config

Targets

    • Target

      2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker

    • Size

      80KB

    • MD5

      ca4e2eb1d7c206fb0ce025fa5ec7638c

    • SHA1

      e9e9f71c907559f4a04b59603823ec293d7a035c

    • SHA256

      85e1faa1d8dd2ab9f474eb70d52e8250b10a88411c7ad248723b0373bec07267

    • SHA512

      7149af60ee28f3a262a88a01afa44f3c339dd5a0bc227c7c989397a1746ef1d850064565d01679b3e783326ead2a9c9304038980a35f2a9c5c3018a1d564d0cf

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqk:vCjsIOtEvwDpj5H9YvQd21

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks