Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-10_389f831ea5b4b59918688e6a8e5da593_cryptolocker

  • Size

    32KB

  • Sample

    240510-jb8znsdg46

  • MD5

    389f831ea5b4b59918688e6a8e5da593

  • SHA1

    12c8ba297e458620245f4428414b91831f5334cd

  • SHA256

    3b1409a1e7bbb1c24a5dde8e62d6b08741f07a7c4e7ee1ea892aed9c823894b1

  • SHA512

    dd6c7dd923f6e8c4f52b289ce39cd493c0e15b6926d46607db1e4e669cc576af45213541387a965032a2de1cf931339de160404abe84d61ab0103243c1bf3bdc

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGJO:bG74zYcgT/Ekd0ryfjF

Score
10/10

Malware Config

Targets

    • Target

      2024-05-10_389f831ea5b4b59918688e6a8e5da593_cryptolocker

    • Size

      32KB

    • MD5

      389f831ea5b4b59918688e6a8e5da593

    • SHA1

      12c8ba297e458620245f4428414b91831f5334cd

    • SHA256

      3b1409a1e7bbb1c24a5dde8e62d6b08741f07a7c4e7ee1ea892aed9c823894b1

    • SHA512

      dd6c7dd923f6e8c4f52b289ce39cd493c0e15b6926d46607db1e4e669cc576af45213541387a965032a2de1cf931339de160404abe84d61ab0103243c1bf3bdc

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGJO:bG74zYcgT/Ekd0ryfjF

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks