Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-15_e246c6417fa44b04a03c78b3c443bcda_cryptolocker

  • Size

    48KB

  • Sample

    240415-hewcbabc4v

  • MD5

    e246c6417fa44b04a03c78b3c443bcda

  • SHA1

    bcdb07b73931e189ca3e815e48944487f18c3de2

  • SHA256

    c144d332c354ad8bdd1b535689d039ecb78f9e997f8254e93ba7d303876c8838

  • SHA512

    ac188ca1fd530b66e65de8fed469b0d6bc0f5012413915f130f7c2f60a6bbeb67b55b7fab8a5dbab51f0969cddf17f13ebc4fdebacbc437266f26f3077b6322e

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4PYG:xj+VGMOtEvwDpjy+TN4t

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_e246c6417fa44b04a03c78b3c443bcda_cryptolocker

    • Size

      48KB

    • MD5

      e246c6417fa44b04a03c78b3c443bcda

    • SHA1

      bcdb07b73931e189ca3e815e48944487f18c3de2

    • SHA256

      c144d332c354ad8bdd1b535689d039ecb78f9e997f8254e93ba7d303876c8838

    • SHA512

      ac188ca1fd530b66e65de8fed469b0d6bc0f5012413915f130f7c2f60a6bbeb67b55b7fab8a5dbab51f0969cddf17f13ebc4fdebacbc437266f26f3077b6322e

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4PYG:xj+VGMOtEvwDpjy+TN4t

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks