Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-29_e03fc59e8fd7e4d1da5886f17d891171_cryptolocker

  • Size

    41KB

  • Sample

    240529-fccfbaag6y

  • MD5

    e03fc59e8fd7e4d1da5886f17d891171

  • SHA1

    01e118c8093508b5e79d38a89c76870d62232a0b

  • SHA256

    8e98ad871509d902dc77ce61aa493f732f6d96d5d0da81dbff681f7fea00c907

  • SHA512

    bf8ba12747f08a43b069d21b56254adef1e96e09a6e31fa9625250bfea941a11bdea5636436285ef179a27a620abc44b5f5849d4fdb1873516422a01a044769f

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKzH15U/Eym:btB9g/WItCSsAGjX7e9N0hunKLYNm

Score
10/10

Malware Config

Targets

    • Target

      2024-05-29_e03fc59e8fd7e4d1da5886f17d891171_cryptolocker

    • Size

      41KB

    • MD5

      e03fc59e8fd7e4d1da5886f17d891171

    • SHA1

      01e118c8093508b5e79d38a89c76870d62232a0b

    • SHA256

      8e98ad871509d902dc77ce61aa493f732f6d96d5d0da81dbff681f7fea00c907

    • SHA512

      bf8ba12747f08a43b069d21b56254adef1e96e09a6e31fa9625250bfea941a11bdea5636436285ef179a27a620abc44b5f5849d4fdb1873516422a01a044769f

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKzH15U/Eym:btB9g/WItCSsAGjX7e9N0hunKLYNm

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks