Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-07...er.exe

windows7-x64

9

2024-03-07...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-07_103a895ed4664a1f4bfea5fa029432ee_cryptolocker

  • Size

    46KB

  • Sample

    240307-3c1t8shh8z

  • MD5

    103a895ed4664a1f4bfea5fa029432ee

  • SHA1

    285657de7db2174183d90db4bfed648ff0b24a77

  • SHA256

    401bd2a1c66782ec8dfacf99b6f948965fd7dc148bfeb8a1a54ad83d5244217b

  • SHA512

    bb4249f48e8ad26487d3a1f7347c26a9d5de9ac6ae7107bfbe5f9af0a108f6f9605eebdc3f2bf1979deeb4c8ca9dd30b94bbdd5dd56f8092607edbb8d591a1d3

  • SSDEEP

    768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kxd:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xk

Score
10/10

Malware Config

Targets

    • Target

      2024-03-07_103a895ed4664a1f4bfea5fa029432ee_cryptolocker

    • Size

      46KB

    • MD5

      103a895ed4664a1f4bfea5fa029432ee

    • SHA1

      285657de7db2174183d90db4bfed648ff0b24a77

    • SHA256

      401bd2a1c66782ec8dfacf99b6f948965fd7dc148bfeb8a1a54ad83d5244217b

    • SHA512

      bb4249f48e8ad26487d3a1f7347c26a9d5de9ac6ae7107bfbe5f9af0a108f6f9605eebdc3f2bf1979deeb4c8ca9dd30b94bbdd5dd56f8092607edbb8d591a1d3

    • SSDEEP

      768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kxd:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xk

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks