Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker

  • Size

    95KB

  • Sample

    240308-gmx1fahf7v

  • MD5

    7b9509732ba8c981827c67f25dbc9441

  • SHA1

    158da51d067286ba46c25f08e637dba9986ac346

  • SHA256

    c4aa62e23f629d85366a52594e87b70dfafaa1b599b61a73eac23dfe621d22e5

  • SHA512

    302dccf7ae1d3a91abc2e324d464d5fad676c34d96dbcb0008288ee0d5cc0db13e74d60993b2623d431fee7154be73eccad9d257e64b11608383d584348bbf22

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3YU:xj+VGMOtEvwDpjubwQEIiVmkv

Score
10/10

Malware Config

Targets

    • Target

      2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker

    • Size

      95KB

    • MD5

      7b9509732ba8c981827c67f25dbc9441

    • SHA1

      158da51d067286ba46c25f08e637dba9986ac346

    • SHA256

      c4aa62e23f629d85366a52594e87b70dfafaa1b599b61a73eac23dfe621d22e5

    • SHA512

      302dccf7ae1d3a91abc2e324d464d5fad676c34d96dbcb0008288ee0d5cc0db13e74d60993b2623d431fee7154be73eccad9d257e64b11608383d584348bbf22

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3YU:xj+VGMOtEvwDpjubwQEIiVmkv

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks