Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-09_f6f58455eb1c2715be8f60fef0665df9_cryptolocker

  • Size

    43KB

  • Sample

    240609-2pstqagf26

  • MD5

    f6f58455eb1c2715be8f60fef0665df9

  • SHA1

    168c06b158b5aeaa1bbfa63e80cab9bdfdc732a4

  • SHA256

    16721ba2f45dd8dc9f8482b1a362008846cb8865fa58551f1c28e1ec11ab092c

  • SHA512

    4d0ccc977560f13341f9885dc7c34d83e805a42aaa2033bf760341654df83706b61c7b75c254568c90e34b506a98ffae7343d568df36072fe68948b702f1e2d7

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/agqw:6j+1NMOtEvwDpjrRtqw

Score
10/10

Malware Config

Targets

    • Target

      2024-06-09_f6f58455eb1c2715be8f60fef0665df9_cryptolocker

    • Size

      43KB

    • MD5

      f6f58455eb1c2715be8f60fef0665df9

    • SHA1

      168c06b158b5aeaa1bbfa63e80cab9bdfdc732a4

    • SHA256

      16721ba2f45dd8dc9f8482b1a362008846cb8865fa58551f1c28e1ec11ab092c

    • SHA512

      4d0ccc977560f13341f9885dc7c34d83e805a42aaa2033bf760341654df83706b61c7b75c254568c90e34b506a98ffae7343d568df36072fe68948b702f1e2d7

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/agqw:6j+1NMOtEvwDpjrRtqw

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks