Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-05_01e8eda21cf9e0f1bc5d53ab9f2c6452_cryptolocker

  • Size

    55KB

  • Sample

    240305-rpjkyahg34

  • MD5

    01e8eda21cf9e0f1bc5d53ab9f2c6452

  • SHA1

    acee30a122bbeab8acb15ca4b8b939ce85d3eecc

  • SHA256

    911667f5c46b12dcc5044d426753c205d7502e2c6fa56009dd672cd818f76e58

  • SHA512

    c7bb3164a5faaa443b479e63091926d24fce656ee22c8c0c4836200f9854cde138a08309b139119ad6b70cbf371d92e411dde7d755f844b9b6ec6c59e463b504

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdvuU:79mqyNhQMOtEvwDpjBPY7xv3g8euU

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_01e8eda21cf9e0f1bc5d53ab9f2c6452_cryptolocker

    • Size

      55KB

    • MD5

      01e8eda21cf9e0f1bc5d53ab9f2c6452

    • SHA1

      acee30a122bbeab8acb15ca4b8b939ce85d3eecc

    • SHA256

      911667f5c46b12dcc5044d426753c205d7502e2c6fa56009dd672cd818f76e58

    • SHA512

      c7bb3164a5faaa443b479e63091926d24fce656ee22c8c0c4836200f9854cde138a08309b139119ad6b70cbf371d92e411dde7d755f844b9b6ec6c59e463b504

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdvuU:79mqyNhQMOtEvwDpjBPY7xv3g8euU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks