Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-25_803687ebbc6fe8709d6e8989f5435f32_cryptolocker

  • Size

    32KB

  • Sample

    240525-2fwh9acg8v

  • MD5

    803687ebbc6fe8709d6e8989f5435f32

  • SHA1

    ae3d50f893240ce26dea5675587bee459e51e46e

  • SHA256

    094ddad5a7c84cce0afbe8e19836e263cd4cf11bc52397135a29982b42886fdd

  • SHA512

    50fc337fb6cfd97d430b02df77b722457cd2a72bc999ba183a9bd53c6bd34e503cc6355161df8d511b8b53146ec3b85c4d1e47b915396f42ea3be5de93b4d689

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXua6:bG74zYcgT/Ekd0ryfjL

Score
10/10

Malware Config

Targets

    • Target

      2024-05-25_803687ebbc6fe8709d6e8989f5435f32_cryptolocker

    • Size

      32KB

    • MD5

      803687ebbc6fe8709d6e8989f5435f32

    • SHA1

      ae3d50f893240ce26dea5675587bee459e51e46e

    • SHA256

      094ddad5a7c84cce0afbe8e19836e263cd4cf11bc52397135a29982b42886fdd

    • SHA512

      50fc337fb6cfd97d430b02df77b722457cd2a72bc999ba183a9bd53c6bd34e503cc6355161df8d511b8b53146ec3b85c4d1e47b915396f42ea3be5de93b4d689

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXua6:bG74zYcgT/Ekd0ryfjL

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks