Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-25_e3acedaa04e0b94723b97323b060c3f2_cryptolocker

  • Size

    66KB

  • Sample

    240525-1xr2qace94

  • MD5

    e3acedaa04e0b94723b97323b060c3f2

  • SHA1

    7ba633e60d636aa9e38a8f01e72fe29b7cedb56b

  • SHA256

    67f7bcdd4ef1a5ae94ff90e3906a9bf0d4b97248d6fe22e07cfc1e58b3c08586

  • SHA512

    9a69218ba5801045fc7e0a1cdc7919e7f83fce12f633e86b76bd793e075ff937e31916bc312672d2a70fa2249a80c0cfb3cba13a769bec56293cf354536e43ba

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGy7:TCjsIOtEvwDpj5HE/OUHnSMYK

Score
10/10

Malware Config

Targets

    • Target

      2024-05-25_e3acedaa04e0b94723b97323b060c3f2_cryptolocker

    • Size

      66KB

    • MD5

      e3acedaa04e0b94723b97323b060c3f2

    • SHA1

      7ba633e60d636aa9e38a8f01e72fe29b7cedb56b

    • SHA256

      67f7bcdd4ef1a5ae94ff90e3906a9bf0d4b97248d6fe22e07cfc1e58b3c08586

    • SHA512

      9a69218ba5801045fc7e0a1cdc7919e7f83fce12f633e86b76bd793e075ff937e31916bc312672d2a70fa2249a80c0cfb3cba13a769bec56293cf354536e43ba

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGy7:TCjsIOtEvwDpj5HE/OUHnSMYK

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks