Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-14_0262393f80dfaab803e1b0f66f618cf8_cryptolocker

  • Size

    47KB

  • Sample

    240614-h8prmatelm

  • MD5

    0262393f80dfaab803e1b0f66f618cf8

  • SHA1

    18da81c24d5e98632738697ce65ea359c1cfa1cc

  • SHA256

    d7f477da6f9a72a112cf7eb4685dfa27f386a2776d2088f72d2d69ef7737969f

  • SHA512

    d3e1d6a0acf00831fca216e5c12014f57d6b801e3a356c18933844396a9b873fd76ded945213c8307fb83323e93bd055a2989ba527c4a453cc1a7c387074be6f

  • SSDEEP

    768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPc1:P6QFElP6k+MRQMOtEvwDpjBQpVXV

Score
10/10

Malware Config

Targets

    • Target

      2024-06-14_0262393f80dfaab803e1b0f66f618cf8_cryptolocker

    • Size

      47KB

    • MD5

      0262393f80dfaab803e1b0f66f618cf8

    • SHA1

      18da81c24d5e98632738697ce65ea359c1cfa1cc

    • SHA256

      d7f477da6f9a72a112cf7eb4685dfa27f386a2776d2088f72d2d69ef7737969f

    • SHA512

      d3e1d6a0acf00831fca216e5c12014f57d6b801e3a356c18933844396a9b873fd76ded945213c8307fb83323e93bd055a2989ba527c4a453cc1a7c387074be6f

    • SSDEEP

      768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPc1:P6QFElP6k+MRQMOtEvwDpjBQpVXV

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks