Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-24_db27bf1a2f547ee321e5f977c10f5d69_cryptolocker

  • Size

    37KB

  • Sample

    240524-fd79dadh25

  • MD5

    db27bf1a2f547ee321e5f977c10f5d69

  • SHA1

    60d725b9730627a87199ced3714d35762a02fd93

  • SHA256

    5c6c1545f801fe1e5e74f2bf1b342e09cdae6d28acd9cbd29798116ce98533f5

  • SHA512

    62198c44c84133182273bc5d0cb655c09b47c5651cda9b1d1ff59c43cacc0ed01b8bf4c95014d02d698fed9570a32a69de17c490d1c0ea713c15417ee86548c6

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4G:fT+hsMQMOtEvwDpjoIHG

Score
10/10

Malware Config

Targets

    • Target

      2024-05-24_db27bf1a2f547ee321e5f977c10f5d69_cryptolocker

    • Size

      37KB

    • MD5

      db27bf1a2f547ee321e5f977c10f5d69

    • SHA1

      60d725b9730627a87199ced3714d35762a02fd93

    • SHA256

      5c6c1545f801fe1e5e74f2bf1b342e09cdae6d28acd9cbd29798116ce98533f5

    • SHA512

      62198c44c84133182273bc5d0cb655c09b47c5651cda9b1d1ff59c43cacc0ed01b8bf4c95014d02d698fed9570a32a69de17c490d1c0ea713c15417ee86548c6

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4G:fT+hsMQMOtEvwDpjoIHG

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks