Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-16_a3c0b44236ba7e69b53eaee0721d88d0_cryptolocker

  • Size

    33KB

  • Sample

    240616-y743xswfkd

  • MD5

    a3c0b44236ba7e69b53eaee0721d88d0

  • SHA1

    ed48521a3ad96a2373e1c42debda03105bed3203

  • SHA256

    231ffcd06cb9b376fcb433a078a18e8a1e1f6707d13f0bc888aafc7790a6d5d6

  • SHA512

    125c768ef8abf5763a81b06d1caeeede51c50844aa4a4d12bd3823abee351a0cac766e3da40a44495c7a0be97ef7acdcd9074ca03a493e1f2040a987d1cda95f

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJP:bG74zYcgT/Ekd0ryfjkx

Score
10/10

Malware Config

Targets

    • Target

      2024-06-16_a3c0b44236ba7e69b53eaee0721d88d0_cryptolocker

    • Size

      33KB

    • MD5

      a3c0b44236ba7e69b53eaee0721d88d0

    • SHA1

      ed48521a3ad96a2373e1c42debda03105bed3203

    • SHA256

      231ffcd06cb9b376fcb433a078a18e8a1e1f6707d13f0bc888aafc7790a6d5d6

    • SHA512

      125c768ef8abf5763a81b06d1caeeede51c50844aa4a4d12bd3823abee351a0cac766e3da40a44495c7a0be97ef7acdcd9074ca03a493e1f2040a987d1cda95f

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJP:bG74zYcgT/Ekd0ryfjkx

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks