Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-27_c9591ec311f685c867ede5a01ff64bbc_cryptolocker

  • Size

    31KB

  • Sample

    240427-cyxftshc29

  • MD5

    c9591ec311f685c867ede5a01ff64bbc

  • SHA1

    85095dae698f0c7650f8f2513ca3581cfc02e4fc

  • SHA256

    d5b052691ff85e28dbd060e86b1aa5d35046c386ac120c22d9735e042babaced

  • SHA512

    3453b64fec647119834383f1961d698559d1b43ce03900d28bcf03212002cd6e6052b331c53e62b1c24432408f3da07cc2a644febf90ee6a788d176a0528ab77

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGo:bG74zYcgT/Ekd0ryfj5

Score
10/10

Malware Config

Targets

    • Target

      2024-04-27_c9591ec311f685c867ede5a01ff64bbc_cryptolocker

    • Size

      31KB

    • MD5

      c9591ec311f685c867ede5a01ff64bbc

    • SHA1

      85095dae698f0c7650f8f2513ca3581cfc02e4fc

    • SHA256

      d5b052691ff85e28dbd060e86b1aa5d35046c386ac120c22d9735e042babaced

    • SHA512

      3453b64fec647119834383f1961d698559d1b43ce03900d28bcf03212002cd6e6052b331c53e62b1c24432408f3da07cc2a644febf90ee6a788d176a0528ab77

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGo:bG74zYcgT/Ekd0ryfj5

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks