Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-14_6b9ba223e07c4e65d30059777831cf1e_cryptolocker

  • Size

    37KB

  • Sample

    240514-egkf2sac83

  • MD5

    6b9ba223e07c4e65d30059777831cf1e

  • SHA1

    5ff396f027f8db43f2e3ecfb83f3df1603e24a8c

  • SHA256

    9fe82e7e5d55ced7c3285d2cfc6e191e7f36c60d378345419bcaefafceb4bb15

  • SHA512

    abaf7d9743d5e4f70e91460e7228097da8584a45faed5014c18e0044e0568aaa8602a2140f7d7388b32ff8acd36584671c357fc170c5cbedde097a23efa32a3a

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4v:fT+hsMQMOtEvwDpjoIHv

Score
10/10

Malware Config

Targets

    • Target

      2024-05-14_6b9ba223e07c4e65d30059777831cf1e_cryptolocker

    • Size

      37KB

    • MD5

      6b9ba223e07c4e65d30059777831cf1e

    • SHA1

      5ff396f027f8db43f2e3ecfb83f3df1603e24a8c

    • SHA256

      9fe82e7e5d55ced7c3285d2cfc6e191e7f36c60d378345419bcaefafceb4bb15

    • SHA512

      abaf7d9743d5e4f70e91460e7228097da8584a45faed5014c18e0044e0568aaa8602a2140f7d7388b32ff8acd36584671c357fc170c5cbedde097a23efa32a3a

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4v:fT+hsMQMOtEvwDpjoIHv

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks