Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-11_16dccbcbafc339729cac98072f97530a_cryptolocker

  • Size

    82KB

  • Sample

    240911-qmy26ssenm

  • MD5

    16dccbcbafc339729cac98072f97530a

  • SHA1

    34583a1746b1e0200e060b1c6a4f60d165635b36

  • SHA256

    c91e312e72f1523144907c6fc3c32cb846181fad880616c0223f2177e041b03c

  • SHA512

    12d2591e1dd13f27f5d4a5c89d62e6e575205f561d6ebe215ca92dd267170a2dbbc279459fd2afe13f80ca33c8e102ae9d46f51105e360b4ffdb86b3d8cffdb5

  • SSDEEP

    1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1ky7Q4t:zCsanOtEvwDpja

Score
7/10

Malware Config

Targets

    • Target

      2024-09-11_16dccbcbafc339729cac98072f97530a_cryptolocker

    • Size

      82KB

    • MD5

      16dccbcbafc339729cac98072f97530a

    • SHA1

      34583a1746b1e0200e060b1c6a4f60d165635b36

    • SHA256

      c91e312e72f1523144907c6fc3c32cb846181fad880616c0223f2177e041b03c

    • SHA512

      12d2591e1dd13f27f5d4a5c89d62e6e575205f561d6ebe215ca92dd267170a2dbbc279459fd2afe13f80ca33c8e102ae9d46f51105e360b4ffdb86b3d8cffdb5

    • SSDEEP

      1536:zj+soPSMOtEvwDpj4ktBl01hJ0tq1ky7Q4t:zCsanOtEvwDpja

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks