Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-05_a3073b1436e148d9cb8e336976efb304_cryptolocker

  • Size

    79KB

  • Sample

    240505-khd9baff49

  • MD5

    a3073b1436e148d9cb8e336976efb304

  • SHA1

    0bf92921d0bfa4a19709f1b4e8661be2ad8f78e6

  • SHA256

    63ed2aaa90a1ed308a83064a3e91340a78feca23d3d971112a68f8041a8d114a

  • SHA512

    e4d68eed4f6ab22439bb1c95917b289a3756931f660ee5f2760b61a569529250ffda97ccc54565df6c4058f5e181c079376e807f67afefe8a4ee8f5737007a5d

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNluiCx:V6a+pOtEvwDpjvpq

Score
10/10

Malware Config

Targets

    • Target

      2024-05-05_a3073b1436e148d9cb8e336976efb304_cryptolocker

    • Size

      79KB

    • MD5

      a3073b1436e148d9cb8e336976efb304

    • SHA1

      0bf92921d0bfa4a19709f1b4e8661be2ad8f78e6

    • SHA256

      63ed2aaa90a1ed308a83064a3e91340a78feca23d3d971112a68f8041a8d114a

    • SHA512

      e4d68eed4f6ab22439bb1c95917b289a3756931f660ee5f2760b61a569529250ffda97ccc54565df6c4058f5e181c079376e807f67afefe8a4ee8f5737007a5d

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNluiCx:V6a+pOtEvwDpjvpq

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks