Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-24_dfaa3f658938b10dc461f368d0bcaf8a_cryptolocker

  • Size

    45KB

  • Sample

    240624-3jjvasxhqe

  • MD5

    dfaa3f658938b10dc461f368d0bcaf8a

  • SHA1

    73279f3e07a98c57a14429174bcf25196c25fbcf

  • SHA256

    d146d33d5fccd05b4254a572ce854248ecf0430b76244bb0e91635ec049c8fbe

  • SHA512

    cb4b82f4a57a09c3305b3e7f79a443bb9f315394ff45554701bed7cd7f44d52769544bc34a99aa3332357640bb74f50352aa790f7fe35af054b0e6802ec25592

  • SSDEEP

    768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPX4:P6QFElP6k+MRQMOtEvwDpjBQpVXE4

Score
10/10

Malware Config

Targets

    • Target

      2024-06-24_dfaa3f658938b10dc461f368d0bcaf8a_cryptolocker

    • Size

      45KB

    • MD5

      dfaa3f658938b10dc461f368d0bcaf8a

    • SHA1

      73279f3e07a98c57a14429174bcf25196c25fbcf

    • SHA256

      d146d33d5fccd05b4254a572ce854248ecf0430b76244bb0e91635ec049c8fbe

    • SHA512

      cb4b82f4a57a09c3305b3e7f79a443bb9f315394ff45554701bed7cd7f44d52769544bc34a99aa3332357640bb74f50352aa790f7fe35af054b0e6802ec25592

    • SSDEEP

      768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPX4:P6QFElP6k+MRQMOtEvwDpjBQpVXE4

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks