Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-17...er.exe

windows7-x64

9

2024-02-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-17_9bbea1230e5d4c9b95844defeb87104a_cryptolocker

  • Size

    71KB

  • Sample

    240217-p12jsafa21

  • MD5

    9bbea1230e5d4c9b95844defeb87104a

  • SHA1

    f5ff6fab8d81567fe25cf7c893895ed4482f5873

  • SHA256

    19a894f70ce2c90572fa96467d140225100d7beccef1518b56d12f6f65261b4b

  • SHA512

    09a47a7432108b9ee0cab70eb832479d2fc767eeb6e1bf237516bf808e44a24bba81219df6c1b070e48cdd4dff6b83f83284d62bea8bb0b8451ed5e23eb03e06

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1bq:X6a+SOtEvwDpjBZYvQd2e

Score
10/10

Malware Config

Targets

    • Target

      2024-02-17_9bbea1230e5d4c9b95844defeb87104a_cryptolocker

    • Size

      71KB

    • MD5

      9bbea1230e5d4c9b95844defeb87104a

    • SHA1

      f5ff6fab8d81567fe25cf7c893895ed4482f5873

    • SHA256

      19a894f70ce2c90572fa96467d140225100d7beccef1518b56d12f6f65261b4b

    • SHA512

      09a47a7432108b9ee0cab70eb832479d2fc767eeb6e1bf237516bf808e44a24bba81219df6c1b070e48cdd4dff6b83f83284d62bea8bb0b8451ed5e23eb03e06

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1bq:X6a+SOtEvwDpjBZYvQd2e

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks