Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-14_12ac2cf30a52fa84c87a245cc38d29f2_cryptolocker

  • Size

    47KB

  • Sample

    240214-d9wt4sga4v

  • MD5

    12ac2cf30a52fa84c87a245cc38d29f2

  • SHA1

    bd4a2a0e362a69ef7292e4ca80e9511261411b5f

  • SHA256

    291f58a5c7294fdc13ac906aa31a98703012855e53272b5b3856354ea032a29e

  • SHA512

    62100db873c85885a992ad039bfc7f36fe5f930c00883c459a8f6d58d426390c3edafba62344e17c74a5ac34dc06c4e080747cf4f4cc8742bfad33fdce04fd91

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvgpnuQ31:6j+1NMOtEvwDpjr8hgpuQ31

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_12ac2cf30a52fa84c87a245cc38d29f2_cryptolocker

    • Size

      47KB

    • MD5

      12ac2cf30a52fa84c87a245cc38d29f2

    • SHA1

      bd4a2a0e362a69ef7292e4ca80e9511261411b5f

    • SHA256

      291f58a5c7294fdc13ac906aa31a98703012855e53272b5b3856354ea032a29e

    • SHA512

      62100db873c85885a992ad039bfc7f36fe5f930c00883c459a8f6d58d426390c3edafba62344e17c74a5ac34dc06c4e080747cf4f4cc8742bfad33fdce04fd91

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvgpnuQ31:6j+1NMOtEvwDpjr8hgpuQ31

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks