Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-22...er.exe

windows7-x64

9

2024-02-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-22_e5846549a5ec822b80f38a3393ea6f27_cryptolocker

  • Size

    68KB

  • Sample

    240222-gyy2wadg79

  • MD5

    e5846549a5ec822b80f38a3393ea6f27

  • SHA1

    2c78685cad0019e1b5b8d2aa9355ba602528cb1b

  • SHA256

    b6f3348bba6f6f0e9485b14f3d79f6a4c320f0ed4ef54d484458212e93e52c9f

  • SHA512

    e85000fc51280db963e6e1af7d04df3b8dcf0f9fe43104f5f94c99b62f723c7cd73de6c8a7b3b898840ad7a9bb53383624e4e0dedb8faf5caa8f70dc9b46045e

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUsl:DW60sllyWOtEvwDpjwF85o

Score
10/10

Malware Config

Targets

    • Target

      2024-02-22_e5846549a5ec822b80f38a3393ea6f27_cryptolocker

    • Size

      68KB

    • MD5

      e5846549a5ec822b80f38a3393ea6f27

    • SHA1

      2c78685cad0019e1b5b8d2aa9355ba602528cb1b

    • SHA256

      b6f3348bba6f6f0e9485b14f3d79f6a4c320f0ed4ef54d484458212e93e52c9f

    • SHA512

      e85000fc51280db963e6e1af7d04df3b8dcf0f9fe43104f5f94c99b62f723c7cd73de6c8a7b3b898840ad7a9bb53383624e4e0dedb8faf5caa8f70dc9b46045e

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUsl:DW60sllyWOtEvwDpjwF85o

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks