Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-19_a22a0487a76890f0bd70ba7639bad294_cryptolocker

  • Size

    95KB

  • Sample

    240919-vxg9mazhlg

  • MD5

    a22a0487a76890f0bd70ba7639bad294

  • SHA1

    032053df388b20738959533112f251403bd8774e

  • SHA256

    c877b47499859c8b5f19dcfefeab69f1857f337438a6b177ca9b5c4af85c0732

  • SHA512

    e1c36237971cc36b211c96ff018e046b913ce598e23f28e7031f8e97c5507ea190d5e6e07fa1918c37855130a13e31171f17da2d25601c409f6d0db0e8ff14a7

  • SSDEEP

    1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRDjgx/ky:zCsanOtEvwDpjBt

Score
7/10

Malware Config

Targets

    • Target

      2024-09-19_a22a0487a76890f0bd70ba7639bad294_cryptolocker

    • Size

      95KB

    • MD5

      a22a0487a76890f0bd70ba7639bad294

    • SHA1

      032053df388b20738959533112f251403bd8774e

    • SHA256

      c877b47499859c8b5f19dcfefeab69f1857f337438a6b177ca9b5c4af85c0732

    • SHA512

      e1c36237971cc36b211c96ff018e046b913ce598e23f28e7031f8e97c5507ea190d5e6e07fa1918c37855130a13e31171f17da2d25601c409f6d0db0e8ff14a7

    • SSDEEP

      1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRDjgx/ky:zCsanOtEvwDpjBt

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks