Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-08...er.exe

windows7-x64

9

2024-03-08...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-08_46048bb31e31066222bc6a738678a55c_cryptolocker

  • Size

    35KB

  • Sample

    240308-tw7bpacd8x

  • MD5

    46048bb31e31066222bc6a738678a55c

  • SHA1

    a4174fd4747f7513a7046fa227c96e9cfbf251d6

  • SHA256

    e3c956a1bac7939afa95dbe3c61cac4696b936af61ebe3212988997e5576e1dc

  • SHA512

    7120edb610c7d21d30ccf27178299702b9326f7c68d1e8f3081db86948c4ff4022f71234225746336745e58d7da94e2f8772f79b1e4e5a4e13ee90fc87129de9

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSzn1KkZQYFxG:b/yC4GyNM01GuQMNXw2PSj1POaG

Score
10/10
discovery

Malware Config

Targets

    • Target

      2024-03-08_46048bb31e31066222bc6a738678a55c_cryptolocker

    • Size

      35KB

    • MD5

      46048bb31e31066222bc6a738678a55c

    • SHA1

      a4174fd4747f7513a7046fa227c96e9cfbf251d6

    • SHA256

      e3c956a1bac7939afa95dbe3c61cac4696b936af61ebe3212988997e5576e1dc

    • SHA512

      7120edb610c7d21d30ccf27178299702b9326f7c68d1e8f3081db86948c4ff4022f71234225746336745e58d7da94e2f8772f79b1e4e5a4e13ee90fc87129de9

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSzn1KkZQYFxG:b/yC4GyNM01GuQMNXw2PSj1POaG

    Score
    9/10
    discovery

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks