Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-18...er.exe

windows7-x64

9

2024-01-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-18_8cf547c807ade177842b5bdb8b6d581b_cryptolocker

  • Size

    58KB

  • Sample

    240118-21vsfseabp

  • MD5

    8cf547c807ade177842b5bdb8b6d581b

  • SHA1

    a0106d7f6343c594948e73a3d52f872f8285e9a0

  • SHA256

    26b765ec77613dd198b854e6e4578d264ccf6b8af8f8a8eb32e6c97f9e6f4bc2

  • SHA512

    d74b603f77c48660460ec85ba623648a38613149044e85084b37db81de0286b1dc726d02401d63c42585517288b9677a8e0caf7a58a32e1e7148cd031f15bd78

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb614f:BbdDmjr+OtEvwDpjMU

Score
10/10

Malware Config

Targets

    • Target

      2024-01-18_8cf547c807ade177842b5bdb8b6d581b_cryptolocker

    • Size

      58KB

    • MD5

      8cf547c807ade177842b5bdb8b6d581b

    • SHA1

      a0106d7f6343c594948e73a3d52f872f8285e9a0

    • SHA256

      26b765ec77613dd198b854e6e4578d264ccf6b8af8f8a8eb32e6c97f9e6f4bc2

    • SHA512

      d74b603f77c48660460ec85ba623648a38613149044e85084b37db81de0286b1dc726d02401d63c42585517288b9677a8e0caf7a58a32e1e7148cd031f15bd78

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb614f:BbdDmjr+OtEvwDpjMU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks