Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-24...er.exe

windows7-x64

9

2024-01-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-24_e81ba2ea13f21629be95b3802899170c_cryptolocker

  • Size

    41KB

  • Sample

    240124-bmzldaehb2

  • MD5

    e81ba2ea13f21629be95b3802899170c

  • SHA1

    d3b1833b5b6db1cf9d9a0dba7f9d91b3479847fe

  • SHA256

    f0e71b2cf3255b1acba7b8472a0aed2a883c77bcb36f790113a41988dfaeab70

  • SHA512

    2a5e82153d2d7dbd901c1825d1838499e7e02ce4cdbb2eecac8287aed0e2ca2a983bd2a971c16c448265f08315cf24d52d6052c6ca0cac57aefd1355c40c977d

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqvh:bxNrC7kYo1Fxf3s05rwxbFch

Score
10/10

Malware Config

Targets

    • Target

      2024-01-24_e81ba2ea13f21629be95b3802899170c_cryptolocker

    • Size

      41KB

    • MD5

      e81ba2ea13f21629be95b3802899170c

    • SHA1

      d3b1833b5b6db1cf9d9a0dba7f9d91b3479847fe

    • SHA256

      f0e71b2cf3255b1acba7b8472a0aed2a883c77bcb36f790113a41988dfaeab70

    • SHA512

      2a5e82153d2d7dbd901c1825d1838499e7e02ce4cdbb2eecac8287aed0e2ca2a983bd2a971c16c448265f08315cf24d52d6052c6ca0cac57aefd1355c40c977d

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqvh:bxNrC7kYo1Fxf3s05rwxbFch

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks