5471ab4c4ed51d65c9714560fcfe315928afa5c0cb28f065899ee2ae3cbe3ff1 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-02-04...er.exe

windows7-x64

9

2024-02-04...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-04_cb34a64140776866a72d1f6df6a9cded_cryptolocker
Size

68KB
Sample

240204-ydyztabdam
MD5

cb34a64140776866a72d1f6df6a9cded
SHA1

e396e71bfe0000de5fefa9552db4dae9d4c8b9f2
SHA256

5471ab4c4ed51d65c9714560fcfe315928afa5c0cb28f065899ee2ae3cbe3ff1
SHA512

ba6cf59c9e8f355bf83ac6cdcd438166cfe8168be57de089e0707ae6093242af07e418c68fc36dc6f0fe8931b64141c2e17e870ac07f4d472aeb28916b3deee2
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUM:DW60sllyWOtEvwDpjwF85+

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-04_cb34a64140776866a72d1f6df6a9cded_cryptolocker.exe

Resource

win7-20231129-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-04_cb34a64140776866a72d1f6df6a9cded_cryptolocker.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-04_cb34a64140776866a72d1f6df6a9cded_cryptolocker
- Size
  
  68KB
- MD5
  
  cb34a64140776866a72d1f6df6a9cded
- SHA1
  
  e396e71bfe0000de5fefa9552db4dae9d4c8b9f2
- SHA256
  
  5471ab4c4ed51d65c9714560fcfe315928afa5c0cb28f065899ee2ae3cbe3ff1
- SHA512
  
  ba6cf59c9e8f355bf83ac6cdcd438166cfe8168be57de089e0707ae6093242af07e418c68fc36dc6f0fe8931b64141c2e17e870ac07f4d472aeb28916b3deee2
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUM:DW60sllyWOtEvwDpjwF85+
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy