2f28229008fd3457b521bd0f2b6e772a251ee1bb2915572de6cf949497303cad | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-02-23...er.exe

windows7-x64

9

2024-02-23...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-02-23_0025e0c333ddcd98858286f8d5a82ae1_cryptolocker
Size

36KB
Sample

240223-3chzesbe23
MD5

0025e0c333ddcd98858286f8d5a82ae1
SHA1

2d15dc26f67db5ea47523333de7657fe2ba21533
SHA256

2f28229008fd3457b521bd0f2b6e772a251ee1bb2915572de6cf949497303cad
SHA512

5a4650316ff20a569d8a52e1fa72559765c10b3cdf28f5ce2a8ee0b53b9011f202c522bd3e4fc22787f01b4a2d37492f6a5120f20a64c0b752a1f272115c22e3
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uhy7O4qqk:X6QFElP6n+gJQMOtEvwDpjBcSKm5uhwE

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-02-23_0025e0c333ddcd98858286f8d5a82ae1_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-23_0025e0c333ddcd98858286f8d5a82ae1_cryptolocker.exe

Resource

win10v2004-20240221-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-23_0025e0c333ddcd98858286f8d5a82ae1_cryptolocker
- Size
  
  36KB
- MD5
  
  0025e0c333ddcd98858286f8d5a82ae1
- SHA1
  
  2d15dc26f67db5ea47523333de7657fe2ba21533
- SHA256
  
  2f28229008fd3457b521bd0f2b6e772a251ee1bb2915572de6cf949497303cad
- SHA512
  
  5a4650316ff20a569d8a52e1fa72559765c10b3cdf28f5ce2a8ee0b53b9011f202c522bd3e4fc22787f01b4a2d37492f6a5120f20a64c0b752a1f272115c22e3
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uhy7O4qqk:X6QFElP6n+gJQMOtEvwDpjBcSKm5uhwE
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy