Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker

  • Size

    54KB

  • Sample

    240524-sd2g2sac66

  • MD5

    ea289329d7a57dde24c6acae4cf553c3

  • SHA1

    fd6caf0485c473600ac4092558adc7eeed178cfa

  • SHA256

    99a623b69e96bf4a1f3a1dbafe129db518992d989f1901f7286f36d53f121fde

  • SHA512

    d1c35957f414b21674a28e58b6e85b3d64acde16bfb775784203f432a845d2679b4cc61dc9d023872f22cfbc606d46810d3eef41985548f98810b0ccb8f98dba

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx0:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7A

Score
10/10

Malware Config

Targets

    • Target

      2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker

    • Size

      54KB

    • MD5

      ea289329d7a57dde24c6acae4cf553c3

    • SHA1

      fd6caf0485c473600ac4092558adc7eeed178cfa

    • SHA256

      99a623b69e96bf4a1f3a1dbafe129db518992d989f1901f7286f36d53f121fde

    • SHA512

      d1c35957f414b21674a28e58b6e85b3d64acde16bfb775784203f432a845d2679b4cc61dc9d023872f22cfbc606d46810d3eef41985548f98810b0ccb8f98dba

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx0:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7A

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks