Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker

  • Size

    41KB

  • Sample

    240219-w3qzdsae3v

  • MD5

    492f0387ddae085d23b3cd760ce100d3

  • SHA1

    792664d071bd8c3db35b0cedc221f1e75f4d8373

  • SHA256

    e64ebd57fdbe887c43dace7bf1deedc028d7516f5515e0bcffdd3caaf997010c

  • SHA512

    3dc7858a432e84b25eb4e2f384d5c46ce279dc086c30147b6910b029d585e9d2eaef8036530ad9d0813cb5eceb6f134295baa98db6e8a6f88dde5709b6686563

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6n8VC:6j+1NMOtEvwDpjrR88

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker

    • Size

      41KB

    • MD5

      492f0387ddae085d23b3cd760ce100d3

    • SHA1

      792664d071bd8c3db35b0cedc221f1e75f4d8373

    • SHA256

      e64ebd57fdbe887c43dace7bf1deedc028d7516f5515e0bcffdd3caaf997010c

    • SHA512

      3dc7858a432e84b25eb4e2f384d5c46ce279dc086c30147b6910b029d585e9d2eaef8036530ad9d0813cb5eceb6f134295baa98db6e8a6f88dde5709b6686563

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6n8VC:6j+1NMOtEvwDpjrR88

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks