Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-08_f22c89b807d44433ba84c073fa421a56_cryptolocker

  • Size

    53KB

  • Sample

    240408-s8ayksgd4y

  • MD5

    f22c89b807d44433ba84c073fa421a56

  • SHA1

    795c5cb0c2178b11a8cbd7e212153d3600376763

  • SHA256

    d672f8dd566ed7c042591df0493f529cb233f47533183f8e2497a1e62903e712

  • SHA512

    6a42aa7f2f8ecbd8843bb7811d08243f227a65275ec5a88d9794ac6726b132d3c7c83814bad99a10424e8c3ed11f6c35ff843cdf9ca5e1be71a582ce01aed1c1

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impys:BbdDmjr+OtEvwDpjMH

Score
10/10

Malware Config

Targets

    • Target

      2024-04-08_f22c89b807d44433ba84c073fa421a56_cryptolocker

    • Size

      53KB

    • MD5

      f22c89b807d44433ba84c073fa421a56

    • SHA1

      795c5cb0c2178b11a8cbd7e212153d3600376763

    • SHA256

      d672f8dd566ed7c042591df0493f529cb233f47533183f8e2497a1e62903e712

    • SHA512

      6a42aa7f2f8ecbd8843bb7811d08243f227a65275ec5a88d9794ac6726b132d3c7c83814bad99a10424e8c3ed11f6c35ff843cdf9ca5e1be71a582ce01aed1c1

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impys:BbdDmjr+OtEvwDpjMH

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks