Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-04...er.exe

windows7-x64

9

2024-02-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-04_ea164475e17a39c62b940c2b6a92dede_cryptolocker

  • Size

    119KB

  • Sample

    240204-elnn9sbefp

  • MD5

    ea164475e17a39c62b940c2b6a92dede

  • SHA1

    22a425a51a7b0329546147f581094309b6673494

  • SHA256

    96b994a4a2e4d5fc8c9e7ae832d0e5eac4dd56a67f47246406dfbd4b0d4ecea4

  • SHA512

    602d7f2b425bdbd07f3b03c307822ae6d33022b3563481461f1adfd06660853c7d8c3a0ac960ba7527a6c6451431377bfae110cf6ba25b7d5ed1d115122f4ba9

  • SSDEEP

    768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTq:gUj+AIMOtEvwDpjNbwQEIPlemUhYa

Score
10/10

Malware Config

Targets

    • Target

      2024-02-04_ea164475e17a39c62b940c2b6a92dede_cryptolocker

    • Size

      119KB

    • MD5

      ea164475e17a39c62b940c2b6a92dede

    • SHA1

      22a425a51a7b0329546147f581094309b6673494

    • SHA256

      96b994a4a2e4d5fc8c9e7ae832d0e5eac4dd56a67f47246406dfbd4b0d4ecea4

    • SHA512

      602d7f2b425bdbd07f3b03c307822ae6d33022b3563481461f1adfd06660853c7d8c3a0ac960ba7527a6c6451431377bfae110cf6ba25b7d5ed1d115122f4ba9

    • SSDEEP

      768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTq:gUj+AIMOtEvwDpjNbwQEIPlemUhYa

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks