Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-16_13a7e9cd3f118f181a7fa5e3ad87179b_cryptolocker

  • Size

    91KB

  • Sample

    240516-z8jdaaha6x

  • MD5

    13a7e9cd3f118f181a7fa5e3ad87179b

  • SHA1

    0ef49cb505f0b797e667723761d04465066aec3d

  • SHA256

    9d8682a717a0506d5d8b94b89ccfce44a4cd5aa922821e289aa32092511d38e6

  • SHA512

    81dec4eb2fe40ca6d5c9039741954080d01784e9a3d4c76c19b66ca21ebed7cba296aaab456bc9e367764e0bb9ee0c912a6f781d08d89db49927d9e849aa271c

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQor:vCjsIOtEvwDpj5H8zPsQ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-16_13a7e9cd3f118f181a7fa5e3ad87179b_cryptolocker

    • Size

      91KB

    • MD5

      13a7e9cd3f118f181a7fa5e3ad87179b

    • SHA1

      0ef49cb505f0b797e667723761d04465066aec3d

    • SHA256

      9d8682a717a0506d5d8b94b89ccfce44a4cd5aa922821e289aa32092511d38e6

    • SHA512

      81dec4eb2fe40ca6d5c9039741954080d01784e9a3d4c76c19b66ca21ebed7cba296aaab456bc9e367764e0bb9ee0c912a6f781d08d89db49927d9e849aa271c

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQor:vCjsIOtEvwDpj5H8zPsQ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks