Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker

  • Size

    87KB

  • Sample

    240601-ptmr2sdc84

  • MD5

    c144122d0fd0e025c98cbb02a2b70522

  • SHA1

    14b5468e6930daafe309b890740d548814b73b87

  • SHA256

    195f5da31e631ff99325d7eb10f095c801c5a25940ae72f316263eee081ffc58

  • SHA512

    b4d5a15ce7a68206f807d060d39e9a944d988d7eafb3bfa7a1cf4437d42fe1670ce0529f8056881206af0e6834a1ac077d2c3c2934607406a0f60fe70b19caae

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aJ:V6a+pOtEvwDpjvp9

Score
10/10

Malware Config

Targets

    • Target

      2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker

    • Size

      87KB

    • MD5

      c144122d0fd0e025c98cbb02a2b70522

    • SHA1

      14b5468e6930daafe309b890740d548814b73b87

    • SHA256

      195f5da31e631ff99325d7eb10f095c801c5a25940ae72f316263eee081ffc58

    • SHA512

      b4d5a15ce7a68206f807d060d39e9a944d988d7eafb3bfa7a1cf4437d42fe1670ce0529f8056881206af0e6834a1ac077d2c3c2934607406a0f60fe70b19caae

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aJ:V6a+pOtEvwDpjvp9

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks