Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-27_bd1f055cfa24cc95aea571cb27a1e3fe_cryptolocker

  • Size

    35KB

  • Sample

    240527-x72r5agd43

  • MD5

    bd1f055cfa24cc95aea571cb27a1e3fe

  • SHA1

    a9228485f22d16081b0491ab2d669e6cac9d8136

  • SHA256

    56067dff8bfcb89920a83fd135034fc7acba6b2f507d6b55f9c1067ab25feb50

  • SHA512

    272c274846e12aad7d63af7f1832f744a4d6fbb388c8f8517071cc0c19041fbd1903cb6f9f6198911804f3c69cdb062dcc63fc4d23dfac187eb9de7d58c78386

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5M4gt:bxNrC7kYo1Fxf2rYA3t

Score
10/10

Malware Config

Targets

    • Target

      2024-05-27_bd1f055cfa24cc95aea571cb27a1e3fe_cryptolocker

    • Size

      35KB

    • MD5

      bd1f055cfa24cc95aea571cb27a1e3fe

    • SHA1

      a9228485f22d16081b0491ab2d669e6cac9d8136

    • SHA256

      56067dff8bfcb89920a83fd135034fc7acba6b2f507d6b55f9c1067ab25feb50

    • SHA512

      272c274846e12aad7d63af7f1832f744a4d6fbb388c8f8517071cc0c19041fbd1903cb6f9f6198911804f3c69cdb062dcc63fc4d23dfac187eb9de7d58c78386

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5M4gt:bxNrC7kYo1Fxf2rYA3t

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks