Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-04_6a32f77042d924e9b87a558f8a3e9d52_cryptolocker

  • Size

    95KB

  • Sample

    240504-x93r7sbf62

  • MD5

    6a32f77042d924e9b87a558f8a3e9d52

  • SHA1

    dc4b2ea5577560c9a6f33b397c6eeedf758e83ac

  • SHA256

    52ef5fa70ac130b8f07121fbfa649d3c65498eb63d6533012f5aeb99af55ee19

  • SHA512

    6487ac5602f11e566d2c65c8e5259b92b0473db1d01515210c14ce38de27ac6755f46aebd7aeb4cb82a475544b95eb2fbdf959e8fcf91f471abaf12bc551746e

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMg9:V6a+pOtEvwDpjtzh

Score
10/10

Malware Config

Targets

    • Target

      2024-05-04_6a32f77042d924e9b87a558f8a3e9d52_cryptolocker

    • Size

      95KB

    • MD5

      6a32f77042d924e9b87a558f8a3e9d52

    • SHA1

      dc4b2ea5577560c9a6f33b397c6eeedf758e83ac

    • SHA256

      52ef5fa70ac130b8f07121fbfa649d3c65498eb63d6533012f5aeb99af55ee19

    • SHA512

      6487ac5602f11e566d2c65c8e5259b92b0473db1d01515210c14ce38de27ac6755f46aebd7aeb4cb82a475544b95eb2fbdf959e8fcf91f471abaf12bc551746e

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMg9:V6a+pOtEvwDpjtzh

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks