41c15ecb31738d3611258cd2ac804d9d8f92ab906845f4b409d40771fed6b735 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-05_94f39a8244ba7bd972810d56fd4df188_cryptolocker
Size

120KB
Sample

240305-ye2gbsgd74
MD5

94f39a8244ba7bd972810d56fd4df188
SHA1

3f92a8f87525501636060d709a14f694208863bf
SHA256

41c15ecb31738d3611258cd2ac804d9d8f92ab906845f4b409d40771fed6b735
SHA512

8ceb03552c4337e4ca14d7efc17642ed419e5389a867510a5c2baf0a9783559125210b4c2e1da466671ed77f26782e71e5a8e1c5530b239525c5482f2bb45374
SSDEEP

1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwMgo:u6a++OtEvwDpj6zs

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-05_94f39a8244ba7bd972810d56fd4df188_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-05_94f39a8244ba7bd972810d56fd4df188_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-05_94f39a8244ba7bd972810d56fd4df188_cryptolocker
- Size
  
  120KB
- MD5
  
  94f39a8244ba7bd972810d56fd4df188
- SHA1
  
  3f92a8f87525501636060d709a14f694208863bf
- SHA256
  
  41c15ecb31738d3611258cd2ac804d9d8f92ab906845f4b409d40771fed6b735
- SHA512
  
  8ceb03552c4337e4ca14d7efc17642ed419e5389a867510a5c2baf0a9783559125210b4c2e1da466671ed77f26782e71e5a8e1c5530b239525c5482f2bb45374
- SSDEEP
  
  1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwMgo:u6a++OtEvwDpj6zs
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy