Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-19...er.exe

windows7-x64

9

2024-01-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-19_ac8b758def8c9b487885246eb57d6aee_cryptolocker

  • Size

    44KB

  • Sample

    240119-mahmwaceb6

  • MD5

    ac8b758def8c9b487885246eb57d6aee

  • SHA1

    e2eca5b3ecb11cf71a884e9ff2ba679bc09b22aa

  • SHA256

    517cd83a4c51363f3ec4cbf66549666799b63f75f8a282e7df5a110b986f64b9

  • SHA512

    82e2c086c4cc397ccb0b563b938f74785358e71dd5ac0cf9c76ed75c3ce0b0385bbb15bb6cda42ca2bf81a6944dd776704a64b126a8a09f7a4b9fc9a45184b15

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedmhXSJJl:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+z

Score
10/10

Malware Config

Targets

    • Target

      2024-01-19_ac8b758def8c9b487885246eb57d6aee_cryptolocker

    • Size

      44KB

    • MD5

      ac8b758def8c9b487885246eb57d6aee

    • SHA1

      e2eca5b3ecb11cf71a884e9ff2ba679bc09b22aa

    • SHA256

      517cd83a4c51363f3ec4cbf66549666799b63f75f8a282e7df5a110b986f64b9

    • SHA512

      82e2c086c4cc397ccb0b563b938f74785358e71dd5ac0cf9c76ed75c3ce0b0385bbb15bb6cda42ca2bf81a6944dd776704a64b126a8a09f7a4b9fc9a45184b15

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedmhXSJJl:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+z

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks