Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-24...er.exe

windows7-x64

9

2024-01-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-24_dea013c6fcf1c0fa4ff3ec6154612e25_cryptolocker

  • Size

    43KB

  • Sample

    240124-ps3f4sacgn

  • MD5

    dea013c6fcf1c0fa4ff3ec6154612e25

  • SHA1

    c66ce2751fec0488a9dfd066547dd8c0fbc3613d

  • SHA256

    e69853ca4953619f00731e020e46826a5a9830d971b0a2dda2f836222c0e8d37

  • SHA512

    d62f8bab5c27f3fc53913714c3e46a09ff7cfa9c70ba1d1b12ea88563f045abf5e3aff71fa7d9174ca4bf94e7df88742720961c92df1edd97c821c80cccb34a8

  • SSDEEP

    768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxG:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XL

Score
10/10

Malware Config

Targets

    • Target

      2024-01-24_dea013c6fcf1c0fa4ff3ec6154612e25_cryptolocker

    • Size

      43KB

    • MD5

      dea013c6fcf1c0fa4ff3ec6154612e25

    • SHA1

      c66ce2751fec0488a9dfd066547dd8c0fbc3613d

    • SHA256

      e69853ca4953619f00731e020e46826a5a9830d971b0a2dda2f836222c0e8d37

    • SHA512

      d62f8bab5c27f3fc53913714c3e46a09ff7cfa9c70ba1d1b12ea88563f045abf5e3aff71fa7d9174ca4bf94e7df88742720961c92df1edd97c821c80cccb34a8

    • SSDEEP

      768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxG:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XL

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks