Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-11_eb9438a68f6909f174efe04359b5f237_cryptolocker

  • Size

    47KB

  • Sample

    240411-jse3xsac6v

  • MD5

    eb9438a68f6909f174efe04359b5f237

  • SHA1

    357cb3b229226451344677604ad3f34ad57e91c8

  • SHA256

    fd93747bfe35b4daeebafd6bb182ff90616fa54700cc9f3d669bace631045cda

  • SHA512

    e4d387af31cef3ec14197df3cf0e6311704ec7e368d5be988542f5feeaef3cef256836a4018db8733cc21e3d0b7437397779bdbba82bc082d6378f399187af94

  • SSDEEP

    384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmR12:XS5nQJ24LR1bytOOtEvwDpjNbP/bmD2

Score
10/10

Malware Config

Targets

    • Target

      2024-04-11_eb9438a68f6909f174efe04359b5f237_cryptolocker

    • Size

      47KB

    • MD5

      eb9438a68f6909f174efe04359b5f237

    • SHA1

      357cb3b229226451344677604ad3f34ad57e91c8

    • SHA256

      fd93747bfe35b4daeebafd6bb182ff90616fa54700cc9f3d669bace631045cda

    • SHA512

      e4d387af31cef3ec14197df3cf0e6311704ec7e368d5be988542f5feeaef3cef256836a4018db8733cc21e3d0b7437397779bdbba82bc082d6378f399187af94

    • SSDEEP

      384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmR12:XS5nQJ24LR1bytOOtEvwDpjNbP/bmD2

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks