Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-06_4fa9db4d94c87082e658c37892abaa40_cryptolocker

  • Size

    61KB

  • Sample

    240306-lfggbshb79

  • MD5

    4fa9db4d94c87082e658c37892abaa40

  • SHA1

    c1153b37f1bc7fef7795e853d4f58b809bd6a43d

  • SHA256

    4281e061fd4a72ddd11c9c4cc203554da97b289f077f12283195fd20c2e31900

  • SHA512

    5d2e13393f8358af37a57f5a879542613445c34d6732b61915390e7d461223cfd5e02f6c0cd52b68581c7b186b7f93f99dd74222a35e1f5dcf6c37f67da5fcd5

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLA+Nxi:X6a+SOtEvwDpjBrOw

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_4fa9db4d94c87082e658c37892abaa40_cryptolocker

    • Size

      61KB

    • MD5

      4fa9db4d94c87082e658c37892abaa40

    • SHA1

      c1153b37f1bc7fef7795e853d4f58b809bd6a43d

    • SHA256

      4281e061fd4a72ddd11c9c4cc203554da97b289f077f12283195fd20c2e31900

    • SHA512

      5d2e13393f8358af37a57f5a879542613445c34d6732b61915390e7d461223cfd5e02f6c0cd52b68581c7b186b7f93f99dd74222a35e1f5dcf6c37f67da5fcd5

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLA+Nxi:X6a+SOtEvwDpjBrOw

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks