Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-13_622ce6eaaaef1052095a19d9259e7a77_cryptolocker

  • Size

    44KB

  • Sample

    240513-yaef1abb3w

  • MD5

    622ce6eaaaef1052095a19d9259e7a77

  • SHA1

    bacb0cfca2079fcf9a4221837875bd7aff90177f

  • SHA256

    58225887b0232d1f7fe81fe08f791d15acc6bd9f93352d4f2052500700a01598

  • SHA512

    e7c2dc6e361fa9fd1c95db7a6eccef26d138079e2f84f884897e41d199d50eafd8e20cab1acaabb4f20ea34e2cce48b4d927fa34643d89d8c8850a057d6340b6

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDUpEui0U3o:bm74zYcgT/Ekn0ryfjLuH

Score
10/10

Malware Config

Targets

    • Target

      2024-05-13_622ce6eaaaef1052095a19d9259e7a77_cryptolocker

    • Size

      44KB

    • MD5

      622ce6eaaaef1052095a19d9259e7a77

    • SHA1

      bacb0cfca2079fcf9a4221837875bd7aff90177f

    • SHA256

      58225887b0232d1f7fe81fe08f791d15acc6bd9f93352d4f2052500700a01598

    • SHA512

      e7c2dc6e361fa9fd1c95db7a6eccef26d138079e2f84f884897e41d199d50eafd8e20cab1acaabb4f20ea34e2cce48b4d927fa34643d89d8c8850a057d6340b6

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDUpEui0U3o:bm74zYcgT/Ekn0ryfjLuH

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks