Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-22_a82a0dc48769a0599722fc1db6c55e48_cryptolocker

  • Size

    83KB

  • Sample

    240422-mye7naad75

  • MD5

    a82a0dc48769a0599722fc1db6c55e48

  • SHA1

    f6f4074e0a1557bd0f73304ece4c6db3cde9c5b9

  • SHA256

    fd43af73597da0714180fa9fc886af160b0146b5d1db1a04fda15239daa62fca

  • SHA512

    59f850cc2759ed2462666bce872ed6a994d91face4ff3ff6d13797183fa1049ffcbae43a704c8e2eba8dd52805914943b2b273f15fccaa3e959f1beef9e4a6fe

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC/:TCjsIOtEvwDpj5HE/OUHnSMe

Score
10/10

Malware Config

Targets

    • Target

      2024-04-22_a82a0dc48769a0599722fc1db6c55e48_cryptolocker

    • Size

      83KB

    • MD5

      a82a0dc48769a0599722fc1db6c55e48

    • SHA1

      f6f4074e0a1557bd0f73304ece4c6db3cde9c5b9

    • SHA256

      fd43af73597da0714180fa9fc886af160b0146b5d1db1a04fda15239daa62fca

    • SHA512

      59f850cc2759ed2462666bce872ed6a994d91face4ff3ff6d13797183fa1049ffcbae43a704c8e2eba8dd52805914943b2b273f15fccaa3e959f1beef9e4a6fe

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC/:TCjsIOtEvwDpj5HE/OUHnSMe

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks