Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-24...er.exe

windows7-x64

9

2024-02-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-24_323acda3834385c7967485aaccd9c848_cryptolocker

  • Size

    43KB

  • Sample

    240224-rtn18aed29

  • MD5

    323acda3834385c7967485aaccd9c848

  • SHA1

    be0bf6e703100344559dfe959e588423ec42631b

  • SHA256

    d453290e04e27bd9f44c0196e8d41a8e3d4d64b3b8c61db34ea143e9e057a1a6

  • SHA512

    390fd9905520b00abbed397b5044c51a95f6831bfc5d3c349c2d0c3854083eda0e2ff0cc7b1cc621a142a644edb8315eded97fed888c63a5cb89c5366634f63e

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5aFr7YOzz2U:V6QFElP6n+gMQMOtEvwDpjyaYaFAHU

Score
10/10

Malware Config

Targets

    • Target

      2024-02-24_323acda3834385c7967485aaccd9c848_cryptolocker

    • Size

      43KB

    • MD5

      323acda3834385c7967485aaccd9c848

    • SHA1

      be0bf6e703100344559dfe959e588423ec42631b

    • SHA256

      d453290e04e27bd9f44c0196e8d41a8e3d4d64b3b8c61db34ea143e9e057a1a6

    • SHA512

      390fd9905520b00abbed397b5044c51a95f6831bfc5d3c349c2d0c3854083eda0e2ff0cc7b1cc621a142a644edb8315eded97fed888c63a5cb89c5366634f63e

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5aFr7YOzz2U:V6QFElP6n+gMQMOtEvwDpjyaYaFAHU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks