4deb94e53c007374f8623f7a310d3feeeebd02e19765c344a2d8d38c713bd2ff | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-14_a0e0f0731de70bbe408ed883e0ed2221_cryptolocker
Size

54KB
Sample

240214-hts6hadc54
MD5

a0e0f0731de70bbe408ed883e0ed2221
SHA1

a88c76a76935c7fc7c867dd3a8679f4183ab32bd
SHA256

4deb94e53c007374f8623f7a310d3feeeebd02e19765c344a2d8d38c713bd2ff
SHA512

6a8cfb3815568d0a9e0a34ac626f1168c48a45c89e9c91faeb7e01e689d963bb0389ddc38134e640eda9f0f14afc0ab72e4dfdb76580b24d77ebbd11dc9e30a4
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdMFbio:79mqyNhQMOtEvwDpjBPY7xv3g8ZFbH

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-14_a0e0f0731de70bbe408ed883e0ed2221_cryptolocker.exe

Resource

win7-20231215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-14_a0e0f0731de70bbe408ed883e0ed2221_cryptolocker.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-14_a0e0f0731de70bbe408ed883e0ed2221_cryptolocker
- Size
  
  54KB
- MD5
  
  a0e0f0731de70bbe408ed883e0ed2221
- SHA1
  
  a88c76a76935c7fc7c867dd3a8679f4183ab32bd
- SHA256
  
  4deb94e53c007374f8623f7a310d3feeeebd02e19765c344a2d8d38c713bd2ff
- SHA512
  
  6a8cfb3815568d0a9e0a34ac626f1168c48a45c89e9c91faeb7e01e689d963bb0389ddc38134e640eda9f0f14afc0ab72e4dfdb76580b24d77ebbd11dc9e30a4
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdMFbio:79mqyNhQMOtEvwDpjBPY7xv3g8ZFbH
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy