Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-11_a725142ac29fa797384dfcceaaed9a89_cryptolocker

  • Size

    42KB

  • Sample

    240511-fp73rahe26

  • MD5

    a725142ac29fa797384dfcceaaed9a89

  • SHA1

    73c8068fbbfb7481df490c33c168660fdcf40857

  • SHA256

    ea17b7e4566feb76e0a5a7e3aa07b75ffe4c8d9c40617fb66d57c23a0af4d3e2

  • SHA512

    7fd9ffdb43b91c1e03a6782262274c808f6e6742190eca9a6442a50a94cd8195921cf529918648c0a72f91e53b1dabbcf2aee81b200aec2f8fb8247eacbf1482

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDN:6j+1NMOtEvwDpjrRy

Score
10/10

Malware Config

Targets

    • Target

      2024-05-11_a725142ac29fa797384dfcceaaed9a89_cryptolocker

    • Size

      42KB

    • MD5

      a725142ac29fa797384dfcceaaed9a89

    • SHA1

      73c8068fbbfb7481df490c33c168660fdcf40857

    • SHA256

      ea17b7e4566feb76e0a5a7e3aa07b75ffe4c8d9c40617fb66d57c23a0af4d3e2

    • SHA512

      7fd9ffdb43b91c1e03a6782262274c808f6e6742190eca9a6442a50a94cd8195921cf529918648c0a72f91e53b1dabbcf2aee81b200aec2f8fb8247eacbf1482

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDN:6j+1NMOtEvwDpjrRy

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks