Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-07_d662f14c994f642d32d55fab8cbdfb27_cryptolocker

  • Size

    63KB

  • Sample

    240307-glkcyseh38

  • MD5

    d662f14c994f642d32d55fab8cbdfb27

  • SHA1

    9405b3d9fc6d678a9b185b9cdfaeba86a5017c85

  • SHA256

    dbdcc4cbd95e6aaa23aca97c162c869e800aa687fd41dd062016381def8151aa

  • SHA512

    2a4dbdc7b61dee73db6f3e9e5de9f20f24f1a45733e5e187ee8c22b9529ad61c8286d7b7763a0381dc44b5de6cc56871c144a4766774216783836794e7926036

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsg:BbdDmjr+OtEvwDpjM8I

Score
10/10

Malware Config

Targets

    • Target

      2024-03-07_d662f14c994f642d32d55fab8cbdfb27_cryptolocker

    • Size

      63KB

    • MD5

      d662f14c994f642d32d55fab8cbdfb27

    • SHA1

      9405b3d9fc6d678a9b185b9cdfaeba86a5017c85

    • SHA256

      dbdcc4cbd95e6aaa23aca97c162c869e800aa687fd41dd062016381def8151aa

    • SHA512

      2a4dbdc7b61dee73db6f3e9e5de9f20f24f1a45733e5e187ee8c22b9529ad61c8286d7b7763a0381dc44b5de6cc56871c144a4766774216783836794e7926036

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsg:BbdDmjr+OtEvwDpjM8I

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks