Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker

  • Size

    42KB

  • Sample

    240406-hgxcdscg8z

  • MD5

    d328fea08aad7ad1f1f060ba1edef1d9

  • SHA1

    42d0b41785f436c75b01c478729b647214805fd8

  • SHA256

    c6da462903bb49df77d3d52f08c513ea6b3b3c71c24f41c7376174c235436f82

  • SHA512

    aeb1ce2bc8e07efd5d08f045a348b736e9aa9c065a64f163d46ad396c7118a4206ea2aa2873718a906c3991814385651ed89dbe13482aa0401dafb4483c1a0bc

  • SSDEEP

    768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvhx5/xFRp5f6:m5nkFNMOtEvwDpjG8hhXj5f6

Score
10/10

Malware Config

Targets

    • Target

      2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker

    • Size

      42KB

    • MD5

      d328fea08aad7ad1f1f060ba1edef1d9

    • SHA1

      42d0b41785f436c75b01c478729b647214805fd8

    • SHA256

      c6da462903bb49df77d3d52f08c513ea6b3b3c71c24f41c7376174c235436f82

    • SHA512

      aeb1ce2bc8e07efd5d08f045a348b736e9aa9c065a64f163d46ad396c7118a4206ea2aa2873718a906c3991814385651ed89dbe13482aa0401dafb4483c1a0bc

    • SSDEEP

      768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvhx5/xFRp5f6:m5nkFNMOtEvwDpjG8hhXj5f6

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks