Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker

  • Size

    42KB

  • Sample

    240524-p2y52sde64

  • MD5

    97fc40e3d7dc2c4d48f8613235ce97f6

  • SHA1

    290128675b847b6189fac98025168fa1c483583c

  • SHA256

    d63ae84bea591dbfa9384b0386a2891c20e2658532ca68df593b65b9074cf1db

  • SHA512

    28f16ff84959751afa81d21a12dd0ba9190de57b72be019aac1b83eae725565e6b221391c146ad26c5693901cbd028ee98a65a04d05869ac180110a723ba2ff8

  • SSDEEP

    768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqtN:bCDOw9aMDooc+vAqtN

Score
10/10

Malware Config

Targets

    • Target

      2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker

    • Size

      42KB

    • MD5

      97fc40e3d7dc2c4d48f8613235ce97f6

    • SHA1

      290128675b847b6189fac98025168fa1c483583c

    • SHA256

      d63ae84bea591dbfa9384b0386a2891c20e2658532ca68df593b65b9074cf1db

    • SHA512

      28f16ff84959751afa81d21a12dd0ba9190de57b72be019aac1b83eae725565e6b221391c146ad26c5693901cbd028ee98a65a04d05869ac180110a723ba2ff8

    • SSDEEP

      768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqtN:bCDOw9aMDooc+vAqtN

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks