Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-01-29...er.exe

windows7-x64

9

2024-01-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-29_81fc6e20f524cec835b30c10c12f5e81_cryptolocker

  • Size

    57KB

  • Sample

    240129-s9azzadcb3

  • MD5

    81fc6e20f524cec835b30c10c12f5e81

  • SHA1

    7845a05a076167cf24d44fe669e0beee21961fe9

  • SHA256

    c87f7959076ae2d68b2fb37eec1038521344188255fec5096f31d4f5c18bf377

  • SHA512

    6b2aa22bec667647a01e6fc4d838156f4c7eb7eae50581bca13e8583a3f81f26283ef4d17ff21a016c34fcdf1a1c12dbfdb4762a131899ac5aa81ff2ce6857c5

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Gowfj+:xj+VGMOtEvwDpjubEg8

Score
10/10

Malware Config

Targets

    • Target

      2024-01-29_81fc6e20f524cec835b30c10c12f5e81_cryptolocker

    • Size

      57KB

    • MD5

      81fc6e20f524cec835b30c10c12f5e81

    • SHA1

      7845a05a076167cf24d44fe669e0beee21961fe9

    • SHA256

      c87f7959076ae2d68b2fb37eec1038521344188255fec5096f31d4f5c18bf377

    • SHA512

      6b2aa22bec667647a01e6fc4d838156f4c7eb7eae50581bca13e8583a3f81f26283ef4d17ff21a016c34fcdf1a1c12dbfdb4762a131899ac5aa81ff2ce6857c5

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Gowfj+:xj+VGMOtEvwDpjubEg8

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks