558834638d21acf3c1aa70ff869eec4d594162f047e484ceb91fa48682264fdc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-02-20...er.exe

windows7-x64

9

2024-02-20...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-20_edf2751c92fdb5e17a7e05001382dedc_cryptolocker
Size

36KB
Sample

240220-fyv5jscc76
MD5

edf2751c92fdb5e17a7e05001382dedc
SHA1

d2d8c7a59ab0ccb82074af123ba60070c5a0503f
SHA256

558834638d21acf3c1aa70ff869eec4d594162f047e484ceb91fa48682264fdc
SHA512

782df8f2a839dc580a5ac43a5d68a53643f7cac2c5cf4f3ba084feccfc7e822d4c3332b6481567f9b15d9f977a137d758701ae175bbda2c14e3d62cd7eb3fb2b
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKU8:btB9g/WItCSsAGjX7e9N0hunKU8

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-02-20_edf2751c92fdb5e17a7e05001382dedc_cryptolocker.exe

Resource

win7-20231215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-20_edf2751c92fdb5e17a7e05001382dedc_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-20_edf2751c92fdb5e17a7e05001382dedc_cryptolocker
- Size
  
  36KB
- MD5
  
  edf2751c92fdb5e17a7e05001382dedc
- SHA1
  
  d2d8c7a59ab0ccb82074af123ba60070c5a0503f
- SHA256
  
  558834638d21acf3c1aa70ff869eec4d594162f047e484ceb91fa48682264fdc
- SHA512
  
  782df8f2a839dc580a5ac43a5d68a53643f7cac2c5cf4f3ba084feccfc7e822d4c3332b6481567f9b15d9f977a137d758701ae175bbda2c14e3d62cd7eb3fb2b
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunKU8:btB9g/WItCSsAGjX7e9N0hunKU8
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy