Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-23...er.exe

windows7-x64

9

2024-01-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-23_68c1d2a53694a0a46329aee5dff51a98_cryptolocker

  • Size

    49KB

  • Sample

    240123-3rfslscgfj

  • MD5

    68c1d2a53694a0a46329aee5dff51a98

  • SHA1

    0102c3f1d2e04f37e7c3a4d9571f07e4bb1b5403

  • SHA256

    52e044ee76ca80466d858b7fabbcaaaf43cfdbe070fc094d409940fc3ea02569

  • SHA512

    79574f4bc36dc5da10ff91c49359f843d246d7c3cbc2f42a278b8b55a8be956d20e4752fae20893751d7f095c7da9d7ef8df3939b13d5a64b81fba6a5884f2d2

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6ImpyG:BbdDmjr+OtEvwDpjMJ

Score
10/10

Malware Config

Targets

    • Target

      2024-01-23_68c1d2a53694a0a46329aee5dff51a98_cryptolocker

    • Size

      49KB

    • MD5

      68c1d2a53694a0a46329aee5dff51a98

    • SHA1

      0102c3f1d2e04f37e7c3a4d9571f07e4bb1b5403

    • SHA256

      52e044ee76ca80466d858b7fabbcaaaf43cfdbe070fc094d409940fc3ea02569

    • SHA512

      79574f4bc36dc5da10ff91c49359f843d246d7c3cbc2f42a278b8b55a8be956d20e4752fae20893751d7f095c7da9d7ef8df3939b13d5a64b81fba6a5884f2d2

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6ImpyG:BbdDmjr+OtEvwDpjMJ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks