Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-28_8cfbc2bb39c4249f621b90d02ce47940_cryptolocker

  • Size

    59KB

  • Sample

    240128-q1v8fadfal

  • MD5

    8cfbc2bb39c4249f621b90d02ce47940

  • SHA1

    a58ae19e2b462f1ddefe05c6d01dc9e741195887

  • SHA256

    172e6e3b1e09fbf8396949de05409a8703e386d57a45c9a1e6543b7742e25189

  • SHA512

    d46b18cbcb184dd38d4fb8649c6a15d7be452333bec00a7c0587801db4aad85c8f996491136142ba7b3f44fcc172e35f3aabf60d4b904891bdcd47d410bbc6d7

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI1:TCjsIOtEvwDpj5HE/OUHnSML

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_8cfbc2bb39c4249f621b90d02ce47940_cryptolocker

    • Size

      59KB

    • MD5

      8cfbc2bb39c4249f621b90d02ce47940

    • SHA1

      a58ae19e2b462f1ddefe05c6d01dc9e741195887

    • SHA256

      172e6e3b1e09fbf8396949de05409a8703e386d57a45c9a1e6543b7742e25189

    • SHA512

      d46b18cbcb184dd38d4fb8649c6a15d7be452333bec00a7c0587801db4aad85c8f996491136142ba7b3f44fcc172e35f3aabf60d4b904891bdcd47d410bbc6d7

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI1:TCjsIOtEvwDpj5HE/OUHnSML

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks