Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-07_f3f9360273c26f2af050025f233cf0c9_cryptolocker

  • Size

    96KB

  • Sample

    240907-kdnl7avbjk

  • MD5

    f3f9360273c26f2af050025f233cf0c9

  • SHA1

    f8b93758b188a17a2985d925c722933757155e1c

  • SHA256

    3472c9512be9b11ba4a644ce0bfebaba18fdd8db25b12bc81eed32a3625834ff

  • SHA512

    92ad95c16226543cc1855ad9723154c368aac4597a68852c25aa94309b2421c714fd791af24557bbe84d46232cb1f9292804451155e208e911fe4f3103bcd4e6

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPd:AnBdOOtEvwDpj6zv

Score
7/10

Malware Config

Targets

    • Target

      2024-09-07_f3f9360273c26f2af050025f233cf0c9_cryptolocker

    • Size

      96KB

    • MD5

      f3f9360273c26f2af050025f233cf0c9

    • SHA1

      f8b93758b188a17a2985d925c722933757155e1c

    • SHA256

      3472c9512be9b11ba4a644ce0bfebaba18fdd8db25b12bc81eed32a3625834ff

    • SHA512

      92ad95c16226543cc1855ad9723154c368aac4597a68852c25aa94309b2421c714fd791af24557bbe84d46232cb1f9292804451155e208e911fe4f3103bcd4e6

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPd:AnBdOOtEvwDpj6zv

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks