Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-15_713b5871aa90940f2347218bfeeb8281_cryptolocker

  • Size

    86KB

  • Sample

    240515-3v4nvaae9z

  • MD5

    713b5871aa90940f2347218bfeeb8281

  • SHA1

    476004edead7228d1e9458abebd583f7af695cbf

  • SHA256

    c275fc2f756e9ac2a34820e18b8ce0c72a9984e027e797101b78cb07c842ade3

  • SHA512

    41c92003c752ca6e17961c1054c26f6315fb9e706edea898cb3fcd4abeaa0651fd07cf841cdeabc714a3c40fde85fc40780aacf556197e0407aca4829c2ffb55

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBlX:vCjsIOtEvwDpj5H9YvQd2l

Score
10/10

Malware Config

Targets

    • Target

      2024-05-15_713b5871aa90940f2347218bfeeb8281_cryptolocker

    • Size

      86KB

    • MD5

      713b5871aa90940f2347218bfeeb8281

    • SHA1

      476004edead7228d1e9458abebd583f7af695cbf

    • SHA256

      c275fc2f756e9ac2a34820e18b8ce0c72a9984e027e797101b78cb07c842ade3

    • SHA512

      41c92003c752ca6e17961c1054c26f6315fb9e706edea898cb3fcd4abeaa0651fd07cf841cdeabc714a3c40fde85fc40780aacf556197e0407aca4829c2ffb55

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBlX:vCjsIOtEvwDpj5H9YvQd2l

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks