Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-13_49ff6a15bbd4cb7b272acca1dcc174d4_cryptolocker

  • Size

    94KB

  • Sample

    240213-jhd3wacf2s

  • MD5

    49ff6a15bbd4cb7b272acca1dcc174d4

  • SHA1

    487296117d05b6ac1273d64cc85284c717b2acad

  • SHA256

    9480b7f8e6e63d43aaabe9bd3df0a1b1bae8347b3b71bf108eeaff9e25640d92

  • SHA512

    aee0b19d5f94834fd1be25b84297eebdd640e8ced52b8b4090bec3b93de14791c359d5dcc5d655cd489b5efa20f87a8e3752b0b72a193a2b03b0ee75a5ddd1a8

  • SSDEEP

    1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4w8:Z6a+pOtEvwDpjtzt

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_49ff6a15bbd4cb7b272acca1dcc174d4_cryptolocker

    • Size

      94KB

    • MD5

      49ff6a15bbd4cb7b272acca1dcc174d4

    • SHA1

      487296117d05b6ac1273d64cc85284c717b2acad

    • SHA256

      9480b7f8e6e63d43aaabe9bd3df0a1b1bae8347b3b71bf108eeaff9e25640d92

    • SHA512

      aee0b19d5f94834fd1be25b84297eebdd640e8ced52b8b4090bec3b93de14791c359d5dcc5d655cd489b5efa20f87a8e3752b0b72a193a2b03b0ee75a5ddd1a8

    • SSDEEP

      1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4w8:Z6a+pOtEvwDpjtzt

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks