Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-27...er.exe

windows7-x64

9

2024-01-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-27_d96af4a9481644ffc7dbb02894da1ff7_cryptolocker

  • Size

    34KB

  • Sample

    240127-nt9q5sbdg6

  • MD5

    d96af4a9481644ffc7dbb02894da1ff7

  • SHA1

    fffb72018a21042f35f8a876eeaec0736e8de086

  • SHA256

    dc10d4358c8a0cbd5869db478d0b53b0e3155ffed3560c05690d90ed23f821bd

  • SHA512

    79ebeab04a6796f0a2213eb4e9b3476c01445489c386c8ca440b7e76d68d397f99dacbe5a0846d2c41ca61a6fe0da50f00b6368930834d1a4bf2d810274bb201

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSzn1KkZ1a8:b/yC4GyNM01GuQMNXw2PSj1PrV

Score
10/10

Malware Config

Targets

    • Target

      2024-01-27_d96af4a9481644ffc7dbb02894da1ff7_cryptolocker

    • Size

      34KB

    • MD5

      d96af4a9481644ffc7dbb02894da1ff7

    • SHA1

      fffb72018a21042f35f8a876eeaec0736e8de086

    • SHA256

      dc10d4358c8a0cbd5869db478d0b53b0e3155ffed3560c05690d90ed23f821bd

    • SHA512

      79ebeab04a6796f0a2213eb4e9b3476c01445489c386c8ca440b7e76d68d397f99dacbe5a0846d2c41ca61a6fe0da50f00b6368930834d1a4bf2d810274bb201

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSzn1KkZ1a8:b/yC4GyNM01GuQMNXw2PSj1PrV

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks