Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-25_bc8b1eecd565287772776e7d1ae6a320_cryptolocker

  • Size

    96KB

  • Sample

    240425-szrjzacb45

  • MD5

    bc8b1eecd565287772776e7d1ae6a320

  • SHA1

    b757e94b1bd8d34856e216592eaf1de6a91784c8

  • SHA256

    7e7da5885a343d54128603cad73b2f2115f1a8e2dc931e92ba03fc931b622948

  • SHA512

    3e3a24e085a01ada3ef8ad120bf690c7d4afbfa47331183455391157254f5d3836cdc127c59b8246160c959c1a2142a959c8647cf8f30d99906120a12bd7bb7d

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvj8+:xj+VGMOtEvwDpjubwQEIiVmkPL

Score
10/10

Malware Config

Targets

    • Target

      2024-04-25_bc8b1eecd565287772776e7d1ae6a320_cryptolocker

    • Size

      96KB

    • MD5

      bc8b1eecd565287772776e7d1ae6a320

    • SHA1

      b757e94b1bd8d34856e216592eaf1de6a91784c8

    • SHA256

      7e7da5885a343d54128603cad73b2f2115f1a8e2dc931e92ba03fc931b622948

    • SHA512

      3e3a24e085a01ada3ef8ad120bf690c7d4afbfa47331183455391157254f5d3836cdc127c59b8246160c959c1a2142a959c8647cf8f30d99906120a12bd7bb7d

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvj8+:xj+VGMOtEvwDpjubwQEIiVmkPL

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks