5e6b3a5ecb998e582914f58c9ff5feaac50e473cb4e78e6dd6f4ee57f40ae975 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-02-11...er.exe

windows7-x64

9

2024-02-11...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-11_1d81e0ac20e19369e86f34b76b117ace_cryptolocker
Size

69KB
Sample

240211-vzpfqaaa5x
MD5

1d81e0ac20e19369e86f34b76b117ace
SHA1

c0e0eb3b6f88b47c4776f23f90e8ebca87133797
SHA256

5e6b3a5ecb998e582914f58c9ff5feaac50e473cb4e78e6dd6f4ee57f40ae975
SHA512

f202fc4793662f065371f82c5a2e0cd0c0e99bea5efd5c6b81558e5e168a1357880f977c4a047cc73f0f0f7a92c794d94b334a14d1a7b6a4acaa711d70a9531c
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUy:DW60sllyWOtEvwDpjwF854

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-11_1d81e0ac20e19369e86f34b76b117ace_cryptolocker.exe

Resource

win7-20231215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-11_1d81e0ac20e19369e86f34b76b117ace_cryptolocker.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-11_1d81e0ac20e19369e86f34b76b117ace_cryptolocker
- Size
  
  69KB
- MD5
  
  1d81e0ac20e19369e86f34b76b117ace
- SHA1
  
  c0e0eb3b6f88b47c4776f23f90e8ebca87133797
- SHA256
  
  5e6b3a5ecb998e582914f58c9ff5feaac50e473cb4e78e6dd6f4ee57f40ae975
- SHA512
  
  f202fc4793662f065371f82c5a2e0cd0c0e99bea5efd5c6b81558e5e168a1357880f977c4a047cc73f0f0f7a92c794d94b334a14d1a7b6a4acaa711d70a9531c
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUy:DW60sllyWOtEvwDpjwF854
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy