Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-03_92bdbcdfa17c207e06bacc7f7bf8b5fa_cryptolocker

  • Size

    54KB

  • Sample

    240503-eb2hdagd68

  • MD5

    92bdbcdfa17c207e06bacc7f7bf8b5fa

  • SHA1

    1732be1630b7b1ba4f4478e195b01ff315ab53ee

  • SHA256

    70329ac875cdd3802d209b6dd10ddc337d97c0281e21c1b2364f8416faa3f395

  • SHA512

    5e453de9da44cf1a9569831f72b7adce7bcfaebe0309a1934a20688139d69773bf4462641dccc47d6c56713a58f1437fe6900fac0ee042f8a69662188b6e9e8f

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO5U0:ZVxkGOtEvwDpjch

Score
10/10

Malware Config

Targets

    • Target

      2024-05-03_92bdbcdfa17c207e06bacc7f7bf8b5fa_cryptolocker

    • Size

      54KB

    • MD5

      92bdbcdfa17c207e06bacc7f7bf8b5fa

    • SHA1

      1732be1630b7b1ba4f4478e195b01ff315ab53ee

    • SHA256

      70329ac875cdd3802d209b6dd10ddc337d97c0281e21c1b2364f8416faa3f395

    • SHA512

      5e453de9da44cf1a9569831f72b7adce7bcfaebe0309a1934a20688139d69773bf4462641dccc47d6c56713a58f1437fe6900fac0ee042f8a69662188b6e9e8f

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdO5U0:ZVxkGOtEvwDpjch

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks