Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-05_5016a195c5a64cbc298044f6fe91c733_cryptolocker

  • Size

    66KB

  • Sample

    240305-jl8fwshh8w

  • MD5

    5016a195c5a64cbc298044f6fe91c733

  • SHA1

    3db41356572d4c1e7465e21fdeb5f58c5f2c5f69

  • SHA256

    91740ee8429629c7b81d30bfa1744a299a445c232fd0ccc312474ba1dc3a9dee

  • SHA512

    8898ef170a8e4fb641bfccfb9fd69420e21557559eb6c13d3be239ad0a1f7d6ef6a6ffffbb0ca5cf49596943fa5c2562fc50b5ddac2eda69cb8ef083f453a097

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbVZhr:ZVxkGOtEvwDpjcawZ

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_5016a195c5a64cbc298044f6fe91c733_cryptolocker

    • Size

      66KB

    • MD5

      5016a195c5a64cbc298044f6fe91c733

    • SHA1

      3db41356572d4c1e7465e21fdeb5f58c5f2c5f69

    • SHA256

      91740ee8429629c7b81d30bfa1744a299a445c232fd0ccc312474ba1dc3a9dee

    • SHA512

      8898ef170a8e4fb641bfccfb9fd69420e21557559eb6c13d3be239ad0a1f7d6ef6a6ffffbb0ca5cf49596943fa5c2562fc50b5ddac2eda69cb8ef083f453a097

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbVZhr:ZVxkGOtEvwDpjcawZ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks