Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-02-27...er.exe

windows7-x64

9

2024-02-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-27_f0727409e527e8800452839719cf70e5_cryptolocker

  • Size

    36KB

  • Sample

    240227-s4t6nacg99

  • MD5

    f0727409e527e8800452839719cf70e5

  • SHA1

    ea558b73844706a7832c96757e4f5c640f7c150c

  • SHA256

    c27209e407c7ec6bba16a783144e8eee3141a3923008c5b6d755557f06db58f2

  • SHA512

    1e97d5388e48b92deb072378952dac2cfa00d8a23608b6f6f1ed2a88a3c549d192bc708d94c9b8330f1cd862011dc432276e720eb72c8ca2adb5faa824cca5b3

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunUgVg:btB9g/WItCSsAGjX7e9N0hunUWg

Score
10/10

Malware Config

Targets

    • Target

      2024-02-27_f0727409e527e8800452839719cf70e5_cryptolocker

    • Size

      36KB

    • MD5

      f0727409e527e8800452839719cf70e5

    • SHA1

      ea558b73844706a7832c96757e4f5c640f7c150c

    • SHA256

      c27209e407c7ec6bba16a783144e8eee3141a3923008c5b6d755557f06db58f2

    • SHA512

      1e97d5388e48b92deb072378952dac2cfa00d8a23608b6f6f1ed2a88a3c549d192bc708d94c9b8330f1cd862011dc432276e720eb72c8ca2adb5faa824cca5b3

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunUgVg:btB9g/WItCSsAGjX7e9N0hunUWg

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks