Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-23_1ead185e1c0b1e9a65cbeb09d095851e_cryptolocker

  • Size

    33KB

  • Sample

    240523-1ane1shc66

  • MD5

    1ead185e1c0b1e9a65cbeb09d095851e

  • SHA1

    bc3173c2af14c7269b40999b904536dd9ef36612

  • SHA256

    192e966ed9a7ee75a0c907bdb226d78436516d9768eed631ee2f15a51372255e

  • SHA512

    3a4c675eecd938fd73c2e0defc0de60a87cd41cee7e0ef71bfc56f56a22e236d002b6f6e74ac708600fdf7f0f58ba884e82da51283ee2438c9671b6ab664dd33

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvxwM:bG74zYcgT/Ekd0ryfjkmM

Score
10/10

Malware Config

Targets

    • Target

      2024-05-23_1ead185e1c0b1e9a65cbeb09d095851e_cryptolocker

    • Size

      33KB

    • MD5

      1ead185e1c0b1e9a65cbeb09d095851e

    • SHA1

      bc3173c2af14c7269b40999b904536dd9ef36612

    • SHA256

      192e966ed9a7ee75a0c907bdb226d78436516d9768eed631ee2f15a51372255e

    • SHA512

      3a4c675eecd938fd73c2e0defc0de60a87cd41cee7e0ef71bfc56f56a22e236d002b6f6e74ac708600fdf7f0f58ba884e82da51283ee2438c9671b6ab664dd33

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvxwM:bG74zYcgT/Ekd0ryfjkmM

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks