Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-13_d51561a257ba98ff3038212b81779bf7_cryptolocker

  • Size

    64KB

  • Sample

    240213-gwlc1aah2x

  • MD5

    d51561a257ba98ff3038212b81779bf7

  • SHA1

    05697ec73b9ce905aff07d81be766db9d15ec72c

  • SHA256

    3060f5086afbddb811abf262741e30220d3b892711166e09199deec5b5a1a482

  • SHA512

    92bbff351928dae420247ecdf872780a5a5fd7b047d923f7258de5d477dfbd174976d2981d78b1bf7f4d58afcaf0d1d66a183fda3a54de0407100a1504d4e653

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HyCyh7vtRJ4BqKb1knzhR:vCjsIOtEvwDpj5Hv03

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_d51561a257ba98ff3038212b81779bf7_cryptolocker

    • Size

      64KB

    • MD5

      d51561a257ba98ff3038212b81779bf7

    • SHA1

      05697ec73b9ce905aff07d81be766db9d15ec72c

    • SHA256

      3060f5086afbddb811abf262741e30220d3b892711166e09199deec5b5a1a482

    • SHA512

      92bbff351928dae420247ecdf872780a5a5fd7b047d923f7258de5d477dfbd174976d2981d78b1bf7f4d58afcaf0d1d66a183fda3a54de0407100a1504d4e653

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HyCyh7vtRJ4BqKb1knzhR:vCjsIOtEvwDpj5Hv03

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks