Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-08_c106e4f7aa7908e7bf9062fb3216d4cd_cryptolocker

  • Size

    80KB

  • Sample

    240908-jfksmswdla

  • MD5

    c106e4f7aa7908e7bf9062fb3216d4cd

  • SHA1

    26d8e159bb19fa7ec1a94114f47287256fbb91e1

  • SHA256

    43d6391abac98e884119d61016e161852ed72e1ec3358a6ca41faa0301930bca

  • SHA512

    a6dc0b9ff864fcfe07914b15db567dad299a6a0249e25fd06724acc9f1b523167d601e68a24bdd4dfe1f363b28d996478945362e4a6722e86c609a43c579fbf7

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOA+YSafiPuqdo:T6a+rdOOtEvwDpjNcB

Score
7/10

Malware Config

Targets

    • Target

      2024-09-08_c106e4f7aa7908e7bf9062fb3216d4cd_cryptolocker

    • Size

      80KB

    • MD5

      c106e4f7aa7908e7bf9062fb3216d4cd

    • SHA1

      26d8e159bb19fa7ec1a94114f47287256fbb91e1

    • SHA256

      43d6391abac98e884119d61016e161852ed72e1ec3358a6ca41faa0301930bca

    • SHA512

      a6dc0b9ff864fcfe07914b15db567dad299a6a0249e25fd06724acc9f1b523167d601e68a24bdd4dfe1f363b28d996478945362e4a6722e86c609a43c579fbf7

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOA+YSafiPuqdo:T6a+rdOOtEvwDpjNcB

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks