Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-30_30a8b65216b63728f9e97b1a33ecd63d_cryptolocker

  • Size

    43KB

  • Sample

    240430-prbl1afa7z

  • MD5

    30a8b65216b63728f9e97b1a33ecd63d

  • SHA1

    b360b1997ec174eac75cc67b00ebe5461c6f3132

  • SHA256

    8386743c8c51fe2aaff0c11bd0b47ee54a42f0e4510e2853f43547f798602077

  • SHA512

    d786b47c6494cee72829af4256541efed6e110d464ef105b84a80529beb48e88a2e9a3bb8afe95edb2ea92174e87c7e4242372654b9023d3f739532b5a49161f

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp

Score
10/10

Malware Config

Targets

    • Target

      2024-04-30_30a8b65216b63728f9e97b1a33ecd63d_cryptolocker

    • Size

      43KB

    • MD5

      30a8b65216b63728f9e97b1a33ecd63d

    • SHA1

      b360b1997ec174eac75cc67b00ebe5461c6f3132

    • SHA256

      8386743c8c51fe2aaff0c11bd0b47ee54a42f0e4510e2853f43547f798602077

    • SHA512

      d786b47c6494cee72829af4256541efed6e110d464ef105b84a80529beb48e88a2e9a3bb8afe95edb2ea92174e87c7e4242372654b9023d3f739532b5a49161f

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks