Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-09_bb0e98273d94d820f24e777732394c92_cryptolocker

  • Size

    92KB

  • Sample

    240110-gqj8rahbcj

  • MD5

    bb0e98273d94d820f24e777732394c92

  • SHA1

    df0dac889b2f718293e927ac85acd7475065a3e4

  • SHA256

    c5b84e410dc9074ff8d4c46e1cab2565fdf42b0051639079681f859a3ced6162

  • SHA512

    29daac5b4290721466509a22f9c1830e1e438bd6988993c756aa19835b23a04c65a40b93131962dc7606d0c74147390346e3daa4f7500856b78ca108600e9ab7

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01p:AnBdOOtEvwDpj6zr

Score
7/10
upx

Malware Config

Targets

    • Target

      2024-01-09_bb0e98273d94d820f24e777732394c92_cryptolocker

    • Size

      92KB

    • MD5

      bb0e98273d94d820f24e777732394c92

    • SHA1

      df0dac889b2f718293e927ac85acd7475065a3e4

    • SHA256

      c5b84e410dc9074ff8d4c46e1cab2565fdf42b0051639079681f859a3ced6162

    • SHA512

      29daac5b4290721466509a22f9c1830e1e438bd6988993c756aa19835b23a04c65a40b93131962dc7606d0c74147390346e3daa4f7500856b78ca108600e9ab7

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01p:AnBdOOtEvwDpj6zr

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks