Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-29_c963a5e8369b978b3cef6ee39e67fa5e_cryptolocker

  • Size

    40KB

  • Sample

    240129-qssgksccen

  • MD5

    c963a5e8369b978b3cef6ee39e67fa5e

  • SHA1

    153bc7b81847a716008b76df2217c2b51b41b2ad

  • SHA256

    aad7795af4a9c0c9aed5b5fc616a4583f835227f2614d1c376cf911e68f822db

  • SHA512

    c2462e0250256c1cae62f8f7a472a647a2f27c7ec638df6c6b0d7e4ccf4a38867c14b5383a5fbb99a0fdb56f66541af8cdd7d59f8c0f0e8d9a9d537fa62d5a47

  • SSDEEP

    384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/Wcz0BVFHxMiBA:79inqyNR/QtOOtEvwDpjBKcmfxMii

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_c963a5e8369b978b3cef6ee39e67fa5e_cryptolocker

    • Size

      40KB

    • MD5

      c963a5e8369b978b3cef6ee39e67fa5e

    • SHA1

      153bc7b81847a716008b76df2217c2b51b41b2ad

    • SHA256

      aad7795af4a9c0c9aed5b5fc616a4583f835227f2614d1c376cf911e68f822db

    • SHA512

      c2462e0250256c1cae62f8f7a472a647a2f27c7ec638df6c6b0d7e4ccf4a38867c14b5383a5fbb99a0fdb56f66541af8cdd7d59f8c0f0e8d9a9d537fa62d5a47

    • SSDEEP

      384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/Wcz0BVFHxMiBA:79inqyNR/QtOOtEvwDpjBKcmfxMii

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks