Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-03_2af463bf281e0453e76e6d1fc1f96899_cryptolocker

  • Size

    87KB

  • Sample

    240603-x2zetafe8s

  • MD5

    2af463bf281e0453e76e6d1fc1f96899

  • SHA1

    26c26045e015722239d3c634a30f3a6b8940b0be

  • SHA256

    30106b3a3f0e30e1110768d83a85c6a142fad10ffa8dea62f3cbf87fb80387bb

  • SHA512

    1ce97bbad19a593983ab17b05fe71afcc7dcf61060d0107c60332e32b40e7db45a743527a088f8b1860842afd3d98a8eccf31389eb90c95667bb38c1f324c8ed

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBlQ:vCjsIOtEvwDpj5H9YvQd2O

Score
10/10

Malware Config

Targets

    • Target

      2024-06-03_2af463bf281e0453e76e6d1fc1f96899_cryptolocker

    • Size

      87KB

    • MD5

      2af463bf281e0453e76e6d1fc1f96899

    • SHA1

      26c26045e015722239d3c634a30f3a6b8940b0be

    • SHA256

      30106b3a3f0e30e1110768d83a85c6a142fad10ffa8dea62f3cbf87fb80387bb

    • SHA512

      1ce97bbad19a593983ab17b05fe71afcc7dcf61060d0107c60332e32b40e7db45a743527a088f8b1860842afd3d98a8eccf31389eb90c95667bb38c1f324c8ed

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBlQ:vCjsIOtEvwDpj5H9YvQd2O

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks