cd384391d988ab8801f88aef7021e14de634cb1fa615d8c0af331eae1e9425c2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-01-29_6cbe7df6e9db4bdaa9bbe8ef7464cb5f_cryptolocker
Size

41KB
Sample

240129-llly1afaa7
MD5

6cbe7df6e9db4bdaa9bbe8ef7464cb5f
SHA1

34b4aae39d2a21a36c99be8be98403d26dfa016f
SHA256

cd384391d988ab8801f88aef7021e14de634cb1fa615d8c0af331eae1e9425c2
SHA512

f9b77d4538a72a50f1b8611950c1e5c7ed5c0f9ccdffef5dc5d0e7aa0acd7d445d495d005d1c0000fbe2e8a579b805426ceec531812c7b3b8bc0a0df2bfc71fb
SSDEEP

768:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+syGz:bgGYcA/53GADw8Cl/S

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-01-29_6cbe7df6e9db4bdaa9bbe8ef7464cb5f_cryptolocker.exe

Resource

win7-20231129-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-01-29_6cbe7df6e9db4bdaa9bbe8ef7464cb5f_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-01-29_6cbe7df6e9db4bdaa9bbe8ef7464cb5f_cryptolocker
- Size
  
  41KB
- MD5
  
  6cbe7df6e9db4bdaa9bbe8ef7464cb5f
- SHA1
  
  34b4aae39d2a21a36c99be8be98403d26dfa016f
- SHA256
  
  cd384391d988ab8801f88aef7021e14de634cb1fa615d8c0af331eae1e9425c2
- SHA512
  
  f9b77d4538a72a50f1b8611950c1e5c7ed5c0f9ccdffef5dc5d0e7aa0acd7d445d495d005d1c0000fbe2e8a579b805426ceec531812c7b3b8bc0a0df2bfc71fb
- SSDEEP
  
  768:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+syGz:bgGYcA/53GADw8Cl/S
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy