Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-15_1dcaa0044fa6100c66e5d77c8eb74e96_cryptolocker

  • Size

    47KB

  • Sample

    240615-w5drvazhmf

  • MD5

    1dcaa0044fa6100c66e5d77c8eb74e96

  • SHA1

    859653f07d15c6342c734a0d4af9e5cf3811203d

  • SHA256

    b1ebcffa6843b81df89eefb069949f37009d1ab8bc7cfc651523eee2791de9ac

  • SHA512

    4c1fb1e5e9f0e02558f17dcfe7f455a334bd0368cf2c59e80bc36d69c829e835388c8077b18095792e160dfffa0a9795321d4e8cc17f851596fc2e33b0e6b742

  • SSDEEP

    384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2Vl:79inqyNR/QtOOtEvwDpjBKccJVODvy3U

Score
10/10

Malware Config

Targets

    • Target

      2024-06-15_1dcaa0044fa6100c66e5d77c8eb74e96_cryptolocker

    • Size

      47KB

    • MD5

      1dcaa0044fa6100c66e5d77c8eb74e96

    • SHA1

      859653f07d15c6342c734a0d4af9e5cf3811203d

    • SHA256

      b1ebcffa6843b81df89eefb069949f37009d1ab8bc7cfc651523eee2791de9ac

    • SHA512

      4c1fb1e5e9f0e02558f17dcfe7f455a334bd0368cf2c59e80bc36d69c829e835388c8077b18095792e160dfffa0a9795321d4e8cc17f851596fc2e33b0e6b742

    • SSDEEP

      384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2Vl:79inqyNR/QtOOtEvwDpjBKccJVODvy3U

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks