Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker

  • Size

    96KB

  • Sample

    240212-me8d4aah7y

  • MD5

    de2feced9f55413662e0866bd6a56ce4

  • SHA1

    084c1235219650273fb76636f7085ba333077fe0

  • SHA256

    76702925cdc22c05afd37201e1d5089ab33585120798098c56bd83e0ba36f39c

  • SHA512

    70de1637c5278214bd2cfc6afe83a6780fa32b7b033f6872c88b4d9a102d86bad70d7e2b3547bcfafa98794350612db3fd5a9d3d8538c53bd6643aed126caf37

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3+:xj+VGMOtEvwDpjubwQEIiVmkf+

Score
10/10

Malware Config

Targets

    • Target

      2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker

    • Size

      96KB

    • MD5

      de2feced9f55413662e0866bd6a56ce4

    • SHA1

      084c1235219650273fb76636f7085ba333077fe0

    • SHA256

      76702925cdc22c05afd37201e1d5089ab33585120798098c56bd83e0ba36f39c

    • SHA512

      70de1637c5278214bd2cfc6afe83a6780fa32b7b033f6872c88b4d9a102d86bad70d7e2b3547bcfafa98794350612db3fd5a9d3d8538c53bd6643aed126caf37

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3+:xj+VGMOtEvwDpjubwQEIiVmkf+

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks