Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-07_02b3931458a47486fa264120677db3d0_cryptolocker

  • Size

    72KB

  • Sample

    240907-benh5swgqp

  • MD5

    02b3931458a47486fa264120677db3d0

  • SHA1

    495723f3ab42240a5c6e646d3bde17b902de8b33

  • SHA256

    4fa494a3f2eea1eeb628d311a5e472e04e93921cc394a7d4e5788190b19757d6

  • SHA512

    149ffea4c698536acfa381d084e8b2626cca5c6cf2da0705d5a8929f868c71ffc52178104e152d6a05e30d56828a349ba164242c95d4f0dcadcde2b7cb5bcd9e

  • SSDEEP

    1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs95J:C4Q2c94OtEvwDpj4H8zi

Score
7/10

Malware Config

Targets

    • Target

      2024-09-07_02b3931458a47486fa264120677db3d0_cryptolocker

    • Size

      72KB

    • MD5

      02b3931458a47486fa264120677db3d0

    • SHA1

      495723f3ab42240a5c6e646d3bde17b902de8b33

    • SHA256

      4fa494a3f2eea1eeb628d311a5e472e04e93921cc394a7d4e5788190b19757d6

    • SHA512

      149ffea4c698536acfa381d084e8b2626cca5c6cf2da0705d5a8929f868c71ffc52178104e152d6a05e30d56828a349ba164242c95d4f0dcadcde2b7cb5bcd9e

    • SSDEEP

      1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs95J:C4Q2c94OtEvwDpj4H8zi

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks