Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-18...er.exe

windows7-x64

9

2024-02-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-18_e1eab0ccc20bc410ada18889a6c07a79_cryptolocker

  • Size

    62KB

  • Sample

    240218-p133lsab41

  • MD5

    e1eab0ccc20bc410ada18889a6c07a79

  • SHA1

    6d6ffe28eb3d595f646b47e767254e7c1fb9d412

  • SHA256

    a246b7552d606a36f7976779bc5efd43dae702a679cc2d028ff6a588a4cfd47e

  • SHA512

    e8f6a9d944741fe1eddab64c4de8d5f173c78f24f7a8c52935a070a7e2463b3bfeff034fb291d49500bf0b9ee76c8b73fed5de63f60df18b5a44aec2b5166694

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDScGr:aq7tdgI2MyzNORQtOflIwoHNV2XBFV76

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_e1eab0ccc20bc410ada18889a6c07a79_cryptolocker

    • Size

      62KB

    • MD5

      e1eab0ccc20bc410ada18889a6c07a79

    • SHA1

      6d6ffe28eb3d595f646b47e767254e7c1fb9d412

    • SHA256

      a246b7552d606a36f7976779bc5efd43dae702a679cc2d028ff6a588a4cfd47e

    • SHA512

      e8f6a9d944741fe1eddab64c4de8d5f173c78f24f7a8c52935a070a7e2463b3bfeff034fb291d49500bf0b9ee76c8b73fed5de63f60df18b5a44aec2b5166694

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDScGr:aq7tdgI2MyzNORQtOflIwoHNV2XBFV76

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks