Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-30_d871504c8612c3e5ae00fca6969e8454_cryptolocker

  • Size

    38KB

  • Sample

    240530-3hz5wsfb95

  • MD5

    d871504c8612c3e5ae00fca6969e8454

  • SHA1

    57f08ad78cafd273afd15d1d8f804b60fdc9b9a3

  • SHA256

    55b53a3adb57d35b8369a5b8e43847b07f5afa243d138f50214ffb55f21f0805

  • SHA512

    4457146afb3bcdaa6a107ac021c060047d7b05c313d319d41a0f0d272aec96a4edb914e923156ff69fb81d6b1e4aca4e52f40bdcedf9187df672870ba0401a56

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4+:fT+hsMQMOtEvwDpjoIH+

Score
10/10

Malware Config

Targets

    • Target

      2024-05-30_d871504c8612c3e5ae00fca6969e8454_cryptolocker

    • Size

      38KB

    • MD5

      d871504c8612c3e5ae00fca6969e8454

    • SHA1

      57f08ad78cafd273afd15d1d8f804b60fdc9b9a3

    • SHA256

      55b53a3adb57d35b8369a5b8e43847b07f5afa243d138f50214ffb55f21f0805

    • SHA512

      4457146afb3bcdaa6a107ac021c060047d7b05c313d319d41a0f0d272aec96a4edb914e923156ff69fb81d6b1e4aca4e52f40bdcedf9187df672870ba0401a56

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4+:fT+hsMQMOtEvwDpjoIH+

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks