Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-24...er.exe

windows7-x64

9

2024-02-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-24_42f5c7a35d6765a3fa93e0d215249c21_cryptolocker

  • Size

    45KB

  • Sample

    240224-x77y5sdc7t

  • MD5

    42f5c7a35d6765a3fa93e0d215249c21

  • SHA1

    440fd2abc7c4e3bbd2072f66af6c03a141526799

  • SHA256

    5981156cb99a0d0209a84bb51721a0389ece2a59fb264dc9ca6c604782cadfce

  • SHA512

    2c432e071d128cc819fd71d1ea9d0f744a694266e659faa670948aa6b1e92895e16e48c9d5c30030ec8cab6dbb5ab9f5e0b67d8231c56d0aaf1fde5c4c3f1ab5

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm+My1j5B:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+9

Score
10/10

Malware Config

Targets

    • Target

      2024-02-24_42f5c7a35d6765a3fa93e0d215249c21_cryptolocker

    • Size

      45KB

    • MD5

      42f5c7a35d6765a3fa93e0d215249c21

    • SHA1

      440fd2abc7c4e3bbd2072f66af6c03a141526799

    • SHA256

      5981156cb99a0d0209a84bb51721a0389ece2a59fb264dc9ca6c604782cadfce

    • SHA512

      2c432e071d128cc819fd71d1ea9d0f744a694266e659faa670948aa6b1e92895e16e48c9d5c30030ec8cab6dbb5ab9f5e0b67d8231c56d0aaf1fde5c4c3f1ab5

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedm+My1j5B:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+9

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks