Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-21_f62acd278577188ad8a7456547cf3140_cryptolocker

  • Size

    33KB

  • Sample

    240521-kswaksfd6y

  • MD5

    f62acd278577188ad8a7456547cf3140

  • SHA1

    1c6f3a434e6641e3f710c84dc3d171f04eda1c16

  • SHA256

    c49436881502e471e88652290ba7e1f9f3ce9653280ba419d783f618a52e8b7b

  • SHA512

    027f0e0f2aa599e9577d3968b1c81e6bc97b2574c75bac3990b9a7a519a56abf0cffb4d793aa2d0f40fdf093f0c6c90d91e53be4d53cee96f7f12cebeb391db3

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvx0:bG74zYcgT/Ekd0ryfjkO

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_f62acd278577188ad8a7456547cf3140_cryptolocker

    • Size

      33KB

    • MD5

      f62acd278577188ad8a7456547cf3140

    • SHA1

      1c6f3a434e6641e3f710c84dc3d171f04eda1c16

    • SHA256

      c49436881502e471e88652290ba7e1f9f3ce9653280ba419d783f618a52e8b7b

    • SHA512

      027f0e0f2aa599e9577d3968b1c81e6bc97b2574c75bac3990b9a7a519a56abf0cffb4d793aa2d0f40fdf093f0c6c90d91e53be4d53cee96f7f12cebeb391db3

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvx0:bG74zYcgT/Ekd0ryfjkO

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks