Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-12_8ff94b48a4f91dba946683bdd207820a_cryptolocker

  • Size

    87KB

  • Sample

    240612-3jvxkayerr

  • MD5

    8ff94b48a4f91dba946683bdd207820a

  • SHA1

    1daacd44ca901004ad5f12fbb5c8bbfe3a554fc8

  • SHA256

    5787c80fca97918ce6ac9d3b61ea42c6236780912237734814dbe69d290df724

  • SHA512

    f6165a36c6f46b2f59b922a8d4ad960e4b3a76bd8559f57a823a72571523e12a93d086946637b59e1898cfca17c6640908a5c6aa04c16fc6e67e13f593151f8f

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6a3:V6a+pOtEvwDpjvpj

Score
10/10

Malware Config

Targets

    • Target

      2024-06-12_8ff94b48a4f91dba946683bdd207820a_cryptolocker

    • Size

      87KB

    • MD5

      8ff94b48a4f91dba946683bdd207820a

    • SHA1

      1daacd44ca901004ad5f12fbb5c8bbfe3a554fc8

    • SHA256

      5787c80fca97918ce6ac9d3b61ea42c6236780912237734814dbe69d290df724

    • SHA512

      f6165a36c6f46b2f59b922a8d4ad960e4b3a76bd8559f57a823a72571523e12a93d086946637b59e1898cfca17c6640908a5c6aa04c16fc6e67e13f593151f8f

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6a3:V6a+pOtEvwDpjvpj

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks