Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-23_7c1a224f7224dff8293a02ba9ab55d06_cryptolocker

  • Size

    43KB

  • Sample

    240423-eak41acf31

  • MD5

    7c1a224f7224dff8293a02ba9ab55d06

  • SHA1

    ddb36dc127a89033fbd389480805bd316adc9244

  • SHA256

    6473a36e5f75cba2d0253204f6e60761c2aac12e411610ac10a4edfa35dbf628

  • SHA512

    f13767da9d4db603661d72a8622b823b80323b8c04949215a04810c978703a3037e9029e4a76fb74f767fc826981241368cd896bc9838213d6b8c1bf8b9a986a

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU13SI:bm74zYcgT/Ekn0ryfjMh

Score
10/10

Malware Config

Targets

    • Target

      2024-04-23_7c1a224f7224dff8293a02ba9ab55d06_cryptolocker

    • Size

      43KB

    • MD5

      7c1a224f7224dff8293a02ba9ab55d06

    • SHA1

      ddb36dc127a89033fbd389480805bd316adc9244

    • SHA256

      6473a36e5f75cba2d0253204f6e60761c2aac12e411610ac10a4edfa35dbf628

    • SHA512

      f13767da9d4db603661d72a8622b823b80323b8c04949215a04810c978703a3037e9029e4a76fb74f767fc826981241368cd896bc9838213d6b8c1bf8b9a986a

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU13SI:bm74zYcgT/Ekn0ryfjMh

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks