Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-27_f873379eaa3a9a7abdd84c5ca49c55c0_cryptolocker

  • Size

    82KB

  • Sample

    240527-qq82jsfc48

  • MD5

    f873379eaa3a9a7abdd84c5ca49c55c0

  • SHA1

    7ad5d0291e838828d1fbe8f8d26e8cf0bdc03407

  • SHA256

    7d0d056aa0a0f61006f8be13d5256387fe96111c3540dad416d6a8bdc8b90d22

  • SHA512

    891309ee9fc30659242be71b871c5449227df6b051e2ea37a41a45d2ffa9755e59f6dc701ab66f026e61637802eb5d018b34f76d8ddcf870c9ad33370f56c9a1

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrM1:TCjsIOtEvwDpj5HE/OUHnSMM

Score
10/10

Malware Config

Targets

    • Target

      2024-05-27_f873379eaa3a9a7abdd84c5ca49c55c0_cryptolocker

    • Size

      82KB

    • MD5

      f873379eaa3a9a7abdd84c5ca49c55c0

    • SHA1

      7ad5d0291e838828d1fbe8f8d26e8cf0bdc03407

    • SHA256

      7d0d056aa0a0f61006f8be13d5256387fe96111c3540dad416d6a8bdc8b90d22

    • SHA512

      891309ee9fc30659242be71b871c5449227df6b051e2ea37a41a45d2ffa9755e59f6dc701ab66f026e61637802eb5d018b34f76d8ddcf870c9ad33370f56c9a1

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrM1:TCjsIOtEvwDpj5HE/OUHnSMM

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks