Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-18...er.exe

windows7-x64

9

2024-02-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-18_8a33a713ef97774a54a367aa6e662650_cryptolocker

  • Size

    32KB

  • Sample

    240218-kmxlfsge38

  • MD5

    8a33a713ef97774a54a367aa6e662650

  • SHA1

    751502c495215762ec251fff98261107c10d09bc

  • SHA256

    497342c3405f476b49a63d8466ae7dcafe8bb316d36d963566bf6cdefeed1030

  • SHA512

    04cf2e059710d12b63284dc7136ae3ca736be4bee11a848125a8f3d0d6560e88282a1aaa9ebef693c3c52a428e106ace52e07d829243097031b51b65034b9cd9

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtx:b7o/2n1TCraU6GD1a4Xt9bRwJ

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_8a33a713ef97774a54a367aa6e662650_cryptolocker

    • Size

      32KB

    • MD5

      8a33a713ef97774a54a367aa6e662650

    • SHA1

      751502c495215762ec251fff98261107c10d09bc

    • SHA256

      497342c3405f476b49a63d8466ae7dcafe8bb316d36d963566bf6cdefeed1030

    • SHA512

      04cf2e059710d12b63284dc7136ae3ca736be4bee11a848125a8f3d0d6560e88282a1aaa9ebef693c3c52a428e106ace52e07d829243097031b51b65034b9cd9

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtx:b7o/2n1TCraU6GD1a4Xt9bRwJ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks