Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-25_8412d5dd6075cdc85a5e55cfdc10ec85_cryptolocker

  • Size

    69KB

  • Sample

    240525-c9pv5abh31

  • MD5

    8412d5dd6075cdc85a5e55cfdc10ec85

  • SHA1

    8de9c1b9eb400ac00bf2f963d88fd3abc3ba69a7

  • SHA256

    712614fe261840e6de9d17cc63588b119c1a29e0b0c14c5c3b25a39c4c6be510

  • SHA512

    c300cd9cd0107d1a349344bb0c8110e49d6689fdb82b80faa7c026435c7944a33e1afe8cfe4a4bc431bd34dd579304c2c10d5b793c266f918371e4b195b81cda

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dE:i5nkFGMOtEvwDpjNbwQEI8UZD6

Score
10/10

Malware Config

Targets

    • Target

      2024-05-25_8412d5dd6075cdc85a5e55cfdc10ec85_cryptolocker

    • Size

      69KB

    • MD5

      8412d5dd6075cdc85a5e55cfdc10ec85

    • SHA1

      8de9c1b9eb400ac00bf2f963d88fd3abc3ba69a7

    • SHA256

      712614fe261840e6de9d17cc63588b119c1a29e0b0c14c5c3b25a39c4c6be510

    • SHA512

      c300cd9cd0107d1a349344bb0c8110e49d6689fdb82b80faa7c026435c7944a33e1afe8cfe4a4bc431bd34dd579304c2c10d5b793c266f918371e4b195b81cda

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dE:i5nkFGMOtEvwDpjNbwQEI8UZD6

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks