Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-15_f7b444f15f0f6ce5b6263774720949b9_cryptolocker

  • Size

    48KB

  • Sample

    240515-1ktd1sde2s

  • MD5

    f7b444f15f0f6ce5b6263774720949b9

  • SHA1

    0482f850807f93f2e6e115f37b9f5d0f02d25f63

  • SHA256

    e62c61c0e36ee3c066de768902845d3bec5b0ab5c9fccd1b12746a0902be6f79

  • SHA512

    d8eaf5fa80da8da21aa8d6758488da86a2f753e1e6b1a7ac34b85d07a4d5bfa0c5aa91bbae82eb8cdeeac944ba8f00ab136d9ee29ede873f6639aa13ace8505a

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8LM:79mqyNhQMOtEvwDpjBzckqSuQ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-15_f7b444f15f0f6ce5b6263774720949b9_cryptolocker

    • Size

      48KB

    • MD5

      f7b444f15f0f6ce5b6263774720949b9

    • SHA1

      0482f850807f93f2e6e115f37b9f5d0f02d25f63

    • SHA256

      e62c61c0e36ee3c066de768902845d3bec5b0ab5c9fccd1b12746a0902be6f79

    • SHA512

      d8eaf5fa80da8da21aa8d6758488da86a2f753e1e6b1a7ac34b85d07a4d5bfa0c5aa91bbae82eb8cdeeac944ba8f00ab136d9ee29ede873f6639aa13ace8505a

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8LM:79mqyNhQMOtEvwDpjBzckqSuQ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks