Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-28_f1f158c013616d66e80b28185aacc570_cryptolocker

  • Size

    101KB

  • Sample

    240228-zsdsvsdg2s

  • MD5

    f1f158c013616d66e80b28185aacc570

  • SHA1

    8a0ac8296af8ecc57a9adb0462b04861d06e6f0c

  • SHA256

    3ea07a13c80fdd5f2821836c37e080e4c45efeafe6c366bc1ac80531f561ba36

  • SHA512

    d43fb34fef8868d46b1db765c37b059c7c78432bf20933d792977e57e6631813f5841900945a275b242a31a68cef6995e0ab875b19d0c7b2951a6236bd0ab426

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k28Jl:xj+VGMOtEvwDpjubwQEIiVmkxv/wb

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_f1f158c013616d66e80b28185aacc570_cryptolocker

    • Size

      101KB

    • MD5

      f1f158c013616d66e80b28185aacc570

    • SHA1

      8a0ac8296af8ecc57a9adb0462b04861d06e6f0c

    • SHA256

      3ea07a13c80fdd5f2821836c37e080e4c45efeafe6c366bc1ac80531f561ba36

    • SHA512

      d43fb34fef8868d46b1db765c37b059c7c78432bf20933d792977e57e6631813f5841900945a275b242a31a68cef6995e0ab875b19d0c7b2951a6236bd0ab426

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k28Jl:xj+VGMOtEvwDpjubwQEIiVmkxv/wb

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks