Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-23_eb05ed08859b8915559f85699fc5f178_cryptolocker

  • Size

    387KB

  • Sample

    240423-b4emjabb48

  • MD5

    eb05ed08859b8915559f85699fc5f178

  • SHA1

    5d959671dfc3a718b788ff24e840a1657e660248

  • SHA256

    39238b1409a9da2cc1996a469337e3f4bd35a746cec4ed5bf298689383fed070

  • SHA512

    1db76240af3b765fb94cbb7c0fdd5e9071bc9383f03c471c1585b9737d56dd384213c097bd1053b1d1daf85dc93cc3171ff87868470f3da6562aac4145de3c72

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXF:nnOflT/ZFIjBz3xjTxynGUOUhXF

Score
10/10

Malware Config

Targets

    • Target

      2024-04-23_eb05ed08859b8915559f85699fc5f178_cryptolocker

    • Size

      387KB

    • MD5

      eb05ed08859b8915559f85699fc5f178

    • SHA1

      5d959671dfc3a718b788ff24e840a1657e660248

    • SHA256

      39238b1409a9da2cc1996a469337e3f4bd35a746cec4ed5bf298689383fed070

    • SHA512

      1db76240af3b765fb94cbb7c0fdd5e9071bc9383f03c471c1585b9737d56dd384213c097bd1053b1d1daf85dc93cc3171ff87868470f3da6562aac4145de3c72

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXF:nnOflT/ZFIjBz3xjTxynGUOUhXF

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks