Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-14_b33d022c7d7d87b713ee3a101bc3d314_cryptolocker

  • Size

    76KB

  • Sample

    240514-yd22gade35

  • MD5

    b33d022c7d7d87b713ee3a101bc3d314

  • SHA1

    7a19ce2640586b78d0bb27a360efa5e21b528d55

  • SHA256

    fdb674c19884494ef31195b4b94d26e8a37b617515d7c799cd2eedb5df177665

  • SHA512

    6f83b869d0e7e806a8be2fe716b9b5e0879cb37da78107eda2eb5686503f98dc8c1c064ce5b4b7ef9aad46b5c43298eeadb054e5724771f84672fbc94f2386a3

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUg:ZVxkGOtEvwDpjcaE

Score
10/10

Malware Config

Targets

    • Target

      2024-05-14_b33d022c7d7d87b713ee3a101bc3d314_cryptolocker

    • Size

      76KB

    • MD5

      b33d022c7d7d87b713ee3a101bc3d314

    • SHA1

      7a19ce2640586b78d0bb27a360efa5e21b528d55

    • SHA256

      fdb674c19884494ef31195b4b94d26e8a37b617515d7c799cd2eedb5df177665

    • SHA512

      6f83b869d0e7e806a8be2fe716b9b5e0879cb37da78107eda2eb5686503f98dc8c1c064ce5b4b7ef9aad46b5c43298eeadb054e5724771f84672fbc94f2386a3

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUg:ZVxkGOtEvwDpjcaE

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks