Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-06...er.exe

windows7-x64

9

2024-03-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-06_faf61bd6a4b7b4559e645ca1e9038d8e_cryptolocker

  • Size

    43KB

  • Sample

    240306-wq97haef73

  • MD5

    faf61bd6a4b7b4559e645ca1e9038d8e

  • SHA1

    3c7a1f0028345f49395206dd657216bb0be40c03

  • SHA256

    ba89827a062c91b4977521ea84c8a28e2dd589d70ae4af45900ba39086b3e760

  • SHA512

    ef56bd22a065a096e85177ee8cee1da544672b5c74427f17a81ce7f2d668e554c3e5530dc112ee3da87e3bd1623840c8ef7ecca2847f834e9e5b5abf5beeb3fc

  • SSDEEP

    768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxW:o1KhxqwtdgI2MyzNORQtOflIwoHNV2X7

Score
10/10

Malware Config

Targets

    • Target

      2024-03-06_faf61bd6a4b7b4559e645ca1e9038d8e_cryptolocker

    • Size

      43KB

    • MD5

      faf61bd6a4b7b4559e645ca1e9038d8e

    • SHA1

      3c7a1f0028345f49395206dd657216bb0be40c03

    • SHA256

      ba89827a062c91b4977521ea84c8a28e2dd589d70ae4af45900ba39086b3e760

    • SHA512

      ef56bd22a065a096e85177ee8cee1da544672b5c74427f17a81ce7f2d668e554c3e5530dc112ee3da87e3bd1623840c8ef7ecca2847f834e9e5b5abf5beeb3fc

    • SSDEEP

      768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxW:o1KhxqwtdgI2MyzNORQtOflIwoHNV2X7

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks