Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-14_b4ebc701cf15ee8ce2d2e755742859a1_cryptolocker

  • Size

    39KB

  • Sample

    240614-q92rksxcqr

  • MD5

    b4ebc701cf15ee8ce2d2e755742859a1

  • SHA1

    ff77ba6f6a6c9bfeb69d8a8a40a4ba987234c900

  • SHA256

    5ed8bcccd96582cb3c4404c3ae9ce872034ed635b831ac03fefe9d3729723723

  • SHA512

    3aae81756a3bad3ddc55f6a3fb921c145b9bedb36db8f6f63dfa88dc5d80386e135e35c01af1079cde283e7b626b26e2ade7e09426b369b60b9c80eae394eccf

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBsYG:qDdFJy3QMOtEvwDpjjWMl7TdvG

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-06-14_b4ebc701cf15ee8ce2d2e755742859a1_cryptolocker

    • Size

      39KB

    • MD5

      b4ebc701cf15ee8ce2d2e755742859a1

    • SHA1

      ff77ba6f6a6c9bfeb69d8a8a40a4ba987234c900

    • SHA256

      5ed8bcccd96582cb3c4404c3ae9ce872034ed635b831ac03fefe9d3729723723

    • SHA512

      3aae81756a3bad3ddc55f6a3fb921c145b9bedb36db8f6f63dfa88dc5d80386e135e35c01af1079cde283e7b626b26e2ade7e09426b369b60b9c80eae394eccf

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBsYG:qDdFJy3QMOtEvwDpjjWMl7TdvG

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks