Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-14_4bc03cbb478abd5e0be9aca7149450bb_cryptolocker

  • Size

    37KB

  • Sample

    240514-ebh12aaa66

  • MD5

    4bc03cbb478abd5e0be9aca7149450bb

  • SHA1

    dad662f83905695a9d9c6059ef97f211354f289e

  • SHA256

    993d5c521f70f44225b456699336c3513de46c94c17d4beb907045642f2e10dd

  • SHA512

    dc3cd41fd998ab2e3cbc38133b6114e253347c89b3ffbf884989e221521809d51252e1309f713c549c205aa3b1508feb260082d3e27d99edf3d28e6c28a3ac5b

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6A0X/EIjxua6s2:b/yC4GyNM01GuQMNXw2PSjH+PPxAs2

Score
10/10

Malware Config

Targets

    • Target

      2024-05-14_4bc03cbb478abd5e0be9aca7149450bb_cryptolocker

    • Size

      37KB

    • MD5

      4bc03cbb478abd5e0be9aca7149450bb

    • SHA1

      dad662f83905695a9d9c6059ef97f211354f289e

    • SHA256

      993d5c521f70f44225b456699336c3513de46c94c17d4beb907045642f2e10dd

    • SHA512

      dc3cd41fd998ab2e3cbc38133b6114e253347c89b3ffbf884989e221521809d51252e1309f713c549c205aa3b1508feb260082d3e27d99edf3d28e6c28a3ac5b

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznHzl6A0X/EIjxua6s2:b/yC4GyNM01GuQMNXw2PSjH+PPxAs2

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks