Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-20...er.exe

windows7-x64

9

2024-02-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-20_108178046816aec24c4a44cef51a1b59_cryptolocker

  • Size

    31KB

  • Sample

    240220-nhlj6sga46

  • MD5

    108178046816aec24c4a44cef51a1b59

  • SHA1

    51687e7fb87917faad1e5491886c5aaa52c277ad

  • SHA256

    21d5c7b133312b75038eabf2a30b31042703aece20901eb9982b1240448a4a4c

  • SHA512

    2f80bd1acc4a9bc48d7d4408966e254529b1569a9aa52d8c5a497d97d21d75a2851fe1f2518ecdb817cbc0a47f65c05da9c640886389ba2106b1bdefbcf3a043

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RDE1X:b7o/2n1TCraU6GD1a4Xt9RQ

Score
10/10

Malware Config

Targets

    • Target

      2024-02-20_108178046816aec24c4a44cef51a1b59_cryptolocker

    • Size

      31KB

    • MD5

      108178046816aec24c4a44cef51a1b59

    • SHA1

      51687e7fb87917faad1e5491886c5aaa52c277ad

    • SHA256

      21d5c7b133312b75038eabf2a30b31042703aece20901eb9982b1240448a4a4c

    • SHA512

      2f80bd1acc4a9bc48d7d4408966e254529b1569a9aa52d8c5a497d97d21d75a2851fe1f2518ecdb817cbc0a47f65c05da9c640886389ba2106b1bdefbcf3a043

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RDE1X:b7o/2n1TCraU6GD1a4Xt9RQ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks