Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-08...er.exe

windows7-x64

9

2024-03-08...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-08_f9afca47fafd646c7e2265858343e66a_cryptolocker

  • Size

    59KB

  • Sample

    240308-g82kraad2x

  • MD5

    f9afca47fafd646c7e2265858343e66a

  • SHA1

    a775bdcc03f5ba0cb1f57d7be8650835b60c6cb0

  • SHA256

    2ab33ba471ca592e938ece6dad331e0c19d195e24e3c2d2ceef40fc1b824c603

  • SHA512

    b637b44f5a31cdff69e2894ce029ffe7297bd182981fa45c8b6c0df96e5558b3468882fd0369ad8289e8490a36c8ebf053df9da345f2abe6949efd2d4f550e27

  • SSDEEP

    1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHH:btng54SMLr+/AO/kIhfoKMHdK

Score
10/10

Malware Config

Targets

    • Target

      2024-03-08_f9afca47fafd646c7e2265858343e66a_cryptolocker

    • Size

      59KB

    • MD5

      f9afca47fafd646c7e2265858343e66a

    • SHA1

      a775bdcc03f5ba0cb1f57d7be8650835b60c6cb0

    • SHA256

      2ab33ba471ca592e938ece6dad331e0c19d195e24e3c2d2ceef40fc1b824c603

    • SHA512

      b637b44f5a31cdff69e2894ce029ffe7297bd182981fa45c8b6c0df96e5558b3468882fd0369ad8289e8490a36c8ebf053df9da345f2abe6949efd2d4f550e27

    • SSDEEP

      1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHH:btng54SMLr+/AO/kIhfoKMHdK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks