Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-29_973751d2e171e7bc6e7c08641e1b9548_cryptolocker

  • Size

    41KB

  • Sample

    240129-mkf7ssfhb9

  • MD5

    973751d2e171e7bc6e7c08641e1b9548

  • SHA1

    a1bb3fffd8fe1778b7ccd83441b7892e481d8d25

  • SHA256

    af9c5e95c0df1a4f5aa7ea378946cbd69f92fb34631b8a05eb2415e5743e34c0

  • SHA512

    fc35929b6d434ef36151548758e61c9e95f8aa69104fa3d20f65034953054fba60015506dc3dcc2cfbb504d5488da9a438d8f4d50fc13e2e42f5ad0d21c667a9

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1j:bxNrC7kYo1Fxf3s05rwxbF7j

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_973751d2e171e7bc6e7c08641e1b9548_cryptolocker

    • Size

      41KB

    • MD5

      973751d2e171e7bc6e7c08641e1b9548

    • SHA1

      a1bb3fffd8fe1778b7ccd83441b7892e481d8d25

    • SHA256

      af9c5e95c0df1a4f5aa7ea378946cbd69f92fb34631b8a05eb2415e5743e34c0

    • SHA512

      fc35929b6d434ef36151548758e61c9e95f8aa69104fa3d20f65034953054fba60015506dc3dcc2cfbb504d5488da9a438d8f4d50fc13e2e42f5ad0d21c667a9

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1j:bxNrC7kYo1Fxf3s05rwxbF7j

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks