Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-25...er.exe

windows7-x64

9

2024-02-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-25_08167d75e7e9036cc7968e81511b80e8_cryptolocker

  • Size

    90KB

  • Sample

    240225-lerwnsge85

  • MD5

    08167d75e7e9036cc7968e81511b80e8

  • SHA1

    528538f9eb509d7560587f4243fad2d9f5d55cba

  • SHA256

    8fbdd1bb37ce006e5cf1db03ae3996d0c62c6fbe8be90734db0d8fff82bafebf

  • SHA512

    0c36e2bcfe4e7af841eb9597a4ebec043af6bc3f55a969d74699b6f2a63cf3eff0f462ac8d315f7e65f010fc429bf901e6094b7d4d37c6347c72790f0de9eca9

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgY:V6a+pOtEvwDpjtzU

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_08167d75e7e9036cc7968e81511b80e8_cryptolocker

    • Size

      90KB

    • MD5

      08167d75e7e9036cc7968e81511b80e8

    • SHA1

      528538f9eb509d7560587f4243fad2d9f5d55cba

    • SHA256

      8fbdd1bb37ce006e5cf1db03ae3996d0c62c6fbe8be90734db0d8fff82bafebf

    • SHA512

      0c36e2bcfe4e7af841eb9597a4ebec043af6bc3f55a969d74699b6f2a63cf3eff0f462ac8d315f7e65f010fc429bf901e6094b7d4d37c6347c72790f0de9eca9

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgY:V6a+pOtEvwDpjtzU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks