Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker

  • Size

    36KB

  • Sample

    240418-kc6flsga65

  • MD5

    58515856491edfae4e28dde5fe1294fc

  • SHA1

    29465a1b65ad4bf30ea79d300ee231eec928eb1c

  • SHA256

    51001316e915fd7f0a30663e23caa190807d96367ed0ff89b7e295a8619c08cb

  • SHA512

    8c5df7a767d61f935989f30229f6652fdd98b2bcf572cb0758f10758e0c3d2ce2a63665b7c7fbfa74e32d514aef69c08a915fa3503ee91d6c7049f652d055fb8

  • SSDEEP

    384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhX:bAvJCYOOvbRPDEgXRc3SSz3SPq

Score
10/10

Malware Config

Targets

    • Target

      2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker

    • Size

      36KB

    • MD5

      58515856491edfae4e28dde5fe1294fc

    • SHA1

      29465a1b65ad4bf30ea79d300ee231eec928eb1c

    • SHA256

      51001316e915fd7f0a30663e23caa190807d96367ed0ff89b7e295a8619c08cb

    • SHA512

      8c5df7a767d61f935989f30229f6652fdd98b2bcf572cb0758f10758e0c3d2ce2a63665b7c7fbfa74e32d514aef69c08a915fa3503ee91d6c7049f652d055fb8

    • SSDEEP

      384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhX:bAvJCYOOvbRPDEgXRc3SSz3SPq

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks