Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-06_0e48bf5aaf5ec6fb1d2150629ca5a182_cryptolocker

  • Size

    126KB

  • Sample

    240306-bvgqjagc83

  • MD5

    0e48bf5aaf5ec6fb1d2150629ca5a182

  • SHA1

    8164ab5e246fe778c120f8e631c802f0f8f33a5a

  • SHA256

    5c095dfcaabd0f9a289887de204e07cad5575ac5b895888738af5fc6cdb21d37

  • SHA512

    4e504e9631aad72ed715e0248373eb1283e6d9e7989c06d15fceebe6296cc06ed9a4f47cd8258ada0450cc446235338ab4d36174011cd463b8a57e0a8f60637c

  • SSDEEP

    1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpVST:vCA9OtEvwDpjU

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_0e48bf5aaf5ec6fb1d2150629ca5a182_cryptolocker

    • Size

      126KB

    • MD5

      0e48bf5aaf5ec6fb1d2150629ca5a182

    • SHA1

      8164ab5e246fe778c120f8e631c802f0f8f33a5a

    • SHA256

      5c095dfcaabd0f9a289887de204e07cad5575ac5b895888738af5fc6cdb21d37

    • SHA512

      4e504e9631aad72ed715e0248373eb1283e6d9e7989c06d15fceebe6296cc06ed9a4f47cd8258ada0450cc446235338ab4d36174011cd463b8a57e0a8f60637c

    • SSDEEP

      1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpVST:vCA9OtEvwDpjU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks