Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.2023-09-28_6e562d07f07ac338f3773fc6babdfbd0_cryptolocker.exe

  • Size

    75KB

  • Sample

    231106-zjjmragd35

  • MD5

    6e562d07f07ac338f3773fc6babdfbd0

  • SHA1

    fdb78a19b4bcaa817ef92c4c8af037a572053d22

  • SHA256

    e0896bcd9c31a2a99407f7ae8f0601c6d035de501c074c8ebac11076c1b60059

  • SHA512

    036d0f1ec996b9eada30d86ca58a2a7e44fb7ca90c34737054e42482b8f94cb2071f1db9012c831a78294589b9f3a1d5cc708f868102c741161c101ae12895bf

  • SSDEEP

    1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1kyYAf:zCsanOtEvwDpjQ

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.2023-09-28_6e562d07f07ac338f3773fc6babdfbd0_cryptolocker.exe

    • Size

      75KB

    • MD5

      6e562d07f07ac338f3773fc6babdfbd0

    • SHA1

      fdb78a19b4bcaa817ef92c4c8af037a572053d22

    • SHA256

      e0896bcd9c31a2a99407f7ae8f0601c6d035de501c074c8ebac11076c1b60059

    • SHA512

      036d0f1ec996b9eada30d86ca58a2a7e44fb7ca90c34737054e42482b8f94cb2071f1db9012c831a78294589b9f3a1d5cc708f868102c741161c101ae12895bf

    • SSDEEP

      1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1kyYAf:zCsanOtEvwDpjQ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks