Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-21_50734f47c0660608fabf01ec6aa6466f_cryptolocker

  • Size

    81KB

  • Sample

    240421-eel7vsaf2s

  • MD5

    50734f47c0660608fabf01ec6aa6466f

  • SHA1

    3d003d71ef72cba1189351a8a7654e68df505cdc

  • SHA256

    e5a06c46fe5509117649302ddd492b2658476a6f7b5ea313d4738912e3fb00e9

  • SHA512

    957608a8463c37197a99a33b447c57f41db2a6036e098bd88a0804d4d98c590fec7578cfdd62c8f13f4d28bcc74effdecf8022f72b99845eb933086aaa5669d8

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqVm:vCjsIOtEvwDpj5H9YvQd2B

Score
10/10

Malware Config

Targets

    • Target

      2024-04-21_50734f47c0660608fabf01ec6aa6466f_cryptolocker

    • Size

      81KB

    • MD5

      50734f47c0660608fabf01ec6aa6466f

    • SHA1

      3d003d71ef72cba1189351a8a7654e68df505cdc

    • SHA256

      e5a06c46fe5509117649302ddd492b2658476a6f7b5ea313d4738912e3fb00e9

    • SHA512

      957608a8463c37197a99a33b447c57f41db2a6036e098bd88a0804d4d98c590fec7578cfdd62c8f13f4d28bcc74effdecf8022f72b99845eb933086aaa5669d8

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqVm:vCjsIOtEvwDpj5H9YvQd2B

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks