Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-29_6b188f5813927070e5af5e9d694988ec_cryptolocker

  • Size

    32KB

  • Sample

    240429-qsmw4abf95

  • MD5

    6b188f5813927070e5af5e9d694988ec

  • SHA1

    5e8e1f12c003169f50b64f751b6105aa361eff28

  • SHA256

    c5186a2af6da9a77837b63c90133184aa927f1268045333c3f69d5ae9a56e2f1

  • SHA512

    eb94f295bbfabaf0a013fbbfb67d0e440b3b20ecab46eb25ce24fee17dfe72cb2257c5e51134cb98c892de1721241b1b95e11b59a3a4235472768d49d5d1508b

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgRi:b/yC4GyNM01GuQMNXw2PSjSKkcJRi

Score
10/10

Malware Config

Targets

    • Target

      2024-04-29_6b188f5813927070e5af5e9d694988ec_cryptolocker

    • Size

      32KB

    • MD5

      6b188f5813927070e5af5e9d694988ec

    • SHA1

      5e8e1f12c003169f50b64f751b6105aa361eff28

    • SHA256

      c5186a2af6da9a77837b63c90133184aa927f1268045333c3f69d5ae9a56e2f1

    • SHA512

      eb94f295bbfabaf0a013fbbfb67d0e440b3b20ecab46eb25ce24fee17dfe72cb2257c5e51134cb98c892de1721241b1b95e11b59a3a4235472768d49d5d1508b

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgRi:b/yC4GyNM01GuQMNXw2PSjSKkcJRi

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.