Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-07_eb8b20d621d9e5658ac72d037046de0f_cryptolocker

  • Size

    46KB

  • Sample

    240507-efkqesgg9y

  • MD5

    eb8b20d621d9e5658ac72d037046de0f

  • SHA1

    1173e4490ef1514546eaed105779b18f57032474

  • SHA256

    f79d200222c9a03d40cc496551e8022a782edbac77c77bfb0041b81137559b5b

  • SHA512

    e2a5f0e6634b3ce21392df55a6835d4a8261e97d7cda4e229d8dba22d4011408860d5c0946ffb79c49e46525e342b27d068bbdcfa7db2db1d2fff90d5c5c8ee1

  • SSDEEP

    768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPo1:P6QFElP6k+MRQMOtEvwDpjBQpVXz1

Score
10/10

Malware Config

Targets

    • Target

      2024-05-07_eb8b20d621d9e5658ac72d037046de0f_cryptolocker

    • Size

      46KB

    • MD5

      eb8b20d621d9e5658ac72d037046de0f

    • SHA1

      1173e4490ef1514546eaed105779b18f57032474

    • SHA256

      f79d200222c9a03d40cc496551e8022a782edbac77c77bfb0041b81137559b5b

    • SHA512

      e2a5f0e6634b3ce21392df55a6835d4a8261e97d7cda4e229d8dba22d4011408860d5c0946ffb79c49e46525e342b27d068bbdcfa7db2db1d2fff90d5c5c8ee1

    • SSDEEP

      768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPo1:P6QFElP6k+MRQMOtEvwDpjBQpVXz1

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks