Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-25_0ab64549917dea515233bae1e370f3cb_cryptolocker

  • Size

    34KB

  • Sample

    240425-dyfzhsed44

  • MD5

    0ab64549917dea515233bae1e370f3cb

  • SHA1

    f111f9add6b822d021d89578ec5c4ad0f9ca0f9d

  • SHA256

    d4374168cc67e9e8b9e5a06826aaedc686b95568a6ec963f7793aec57923d36f

  • SHA512

    2b9fd7d730733edba50ab8db4875b6db88a01f7ac39b34cca565cd36ecc617f02a0fe380f3b280b4dc84a45f8ba0448ed74d296bd3c5f00d4c9f8db228cd3122

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4Jzd:fT+hsMQMOtEvwDpjoIHJzd

Score
10/10

Malware Config

Targets

    • Target

      2024-04-25_0ab64549917dea515233bae1e370f3cb_cryptolocker

    • Size

      34KB

    • MD5

      0ab64549917dea515233bae1e370f3cb

    • SHA1

      f111f9add6b822d021d89578ec5c4ad0f9ca0f9d

    • SHA256

      d4374168cc67e9e8b9e5a06826aaedc686b95568a6ec963f7793aec57923d36f

    • SHA512

      2b9fd7d730733edba50ab8db4875b6db88a01f7ac39b34cca565cd36ecc617f02a0fe380f3b280b4dc84a45f8ba0448ed74d296bd3c5f00d4c9f8db228cd3122

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4Jzd:fT+hsMQMOtEvwDpjoIHJzd

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks