Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-22...er.exe

windows7-x64

9

2024-02-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-22_fcc51b0333aa22a8e8720ef667a14800_cryptolocker

  • Size

    80KB

  • Sample

    240222-gd11qsce8x

  • MD5

    fcc51b0333aa22a8e8720ef667a14800

  • SHA1

    53ee3e2c8ec66a20390a3c3146e677535b55cd22

  • SHA256

    211cd8ffb1cf352d14ae010bb679c6c30ac6b31f33fbc5344f2c6d507e2ddb5a

  • SHA512

    496a4ac339f654691927379305e50b47c4ddda4d7af8d994026354823d68d2dfbdf75aa1ecd1904a702fae0384bb96aa314b9ff1264c9799b083305e9d08ed8c

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBd0W:T6a+rdOOtEvwDpjNtV

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-02-22_fcc51b0333aa22a8e8720ef667a14800_cryptolocker

    • Size

      80KB

    • MD5

      fcc51b0333aa22a8e8720ef667a14800

    • SHA1

      53ee3e2c8ec66a20390a3c3146e677535b55cd22

    • SHA256

      211cd8ffb1cf352d14ae010bb679c6c30ac6b31f33fbc5344f2c6d507e2ddb5a

    • SHA512

      496a4ac339f654691927379305e50b47c4ddda4d7af8d994026354823d68d2dfbdf75aa1ecd1904a702fae0384bb96aa314b9ff1264c9799b083305e9d08ed8c

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOAkXtBd0W:T6a+rdOOtEvwDpjNtV

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks