Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker

  • Size

    38KB

  • Sample

    240421-yxfycabb6x

  • MD5

    9f6b221d7eee85dcac8c7b62607c982d

  • SHA1

    3010b2fed059c7158d1419c53998ad80faf317e9

  • SHA256

    520c910b5f6988109349fabdab21c4054b7484c718c66664723154588276e58a

  • SHA512

    e2d6f2df1cb219a386e947d2fd08a5d7748437c01d9ec73cabaa94a06ae55faf648185aa811cf96414058b0631958a4272ad5271ca6b0d6c9582b20f979b2f14

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Z:qDdFJy3QMOtEvwDpjjWMl7TS

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker

    • Size

      38KB

    • MD5

      9f6b221d7eee85dcac8c7b62607c982d

    • SHA1

      3010b2fed059c7158d1419c53998ad80faf317e9

    • SHA256

      520c910b5f6988109349fabdab21c4054b7484c718c66664723154588276e58a

    • SHA512

      e2d6f2df1cb219a386e947d2fd08a5d7748437c01d9ec73cabaa94a06ae55faf648185aa811cf96414058b0631958a4272ad5271ca6b0d6c9582b20f979b2f14

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Z:qDdFJy3QMOtEvwDpjjWMl7TS

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks