Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-29_7e6c5ed9104a5ab083c35fe2a20817a3_cryptolocker

  • Size

    38KB

  • Sample

    240529-avfmssag9y

  • MD5

    7e6c5ed9104a5ab083c35fe2a20817a3

  • SHA1

    b24a4a47123ef7da1f73e84ad057691b05932ac2

  • SHA256

    41a62e941af4fcffcbc54374564e19fa7af55c8cd47eb178b1cf0a0903934e6b

  • SHA512

    ccc32c5e65fd46ae097e2db0b16c4bf692892bd1ddb5ead746c4c11c35c4daf3ef0cd0b68ab4bd1c7309c8a1e1446518f7012e7d846bd6e254d5b31c5d5d3689

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4Xt9bRU6zA6o36mhI:bc/y2lLRU6zA6qa

Score
10/10

Malware Config

Targets

    • Target

      2024-05-29_7e6c5ed9104a5ab083c35fe2a20817a3_cryptolocker

    • Size

      38KB

    • MD5

      7e6c5ed9104a5ab083c35fe2a20817a3

    • SHA1

      b24a4a47123ef7da1f73e84ad057691b05932ac2

    • SHA256

      41a62e941af4fcffcbc54374564e19fa7af55c8cd47eb178b1cf0a0903934e6b

    • SHA512

      ccc32c5e65fd46ae097e2db0b16c4bf692892bd1ddb5ead746c4c11c35c4daf3ef0cd0b68ab4bd1c7309c8a1e1446518f7012e7d846bd6e254d5b31c5d5d3689

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4Xt9bRU6zA6o36mhI:bc/y2lLRU6zA6qa

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks