Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-31_1cbd69a6bf2e48eb60f2e217ace4efa7_cryptolocker

  • Size

    32KB

  • Sample

    240531-e2qhsseh7t

  • MD5

    1cbd69a6bf2e48eb60f2e217ace4efa7

  • SHA1

    8afe5abb43f9ed2fcc38f8e7a79d01de734b526d

  • SHA256

    a9b09d26d8c4ae40cf48b5f104fe3e58d0bb65f70943d0ba9b44b6dcdcf8b335

  • SHA512

    3bb37c3e56c3d078c613b55d2708db11e627860122937ab79b8d5c8f3b92183e7ef48e33eeafda0d2fa2a6f59a36768876254b40721d3f21daa699ac8921e594

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTG7X:bG74zYcgT/Ekd0ryfju

Score
10/10

Malware Config

Targets

    • Target

      2024-05-31_1cbd69a6bf2e48eb60f2e217ace4efa7_cryptolocker

    • Size

      32KB

    • MD5

      1cbd69a6bf2e48eb60f2e217ace4efa7

    • SHA1

      8afe5abb43f9ed2fcc38f8e7a79d01de734b526d

    • SHA256

      a9b09d26d8c4ae40cf48b5f104fe3e58d0bb65f70943d0ba9b44b6dcdcf8b335

    • SHA512

      3bb37c3e56c3d078c613b55d2708db11e627860122937ab79b8d5c8f3b92183e7ef48e33eeafda0d2fa2a6f59a36768876254b40721d3f21daa699ac8921e594

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTG7X:bG74zYcgT/Ekd0ryfju

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks