Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-09...er.exe

windows7-x64

9

2024-03-09...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-09_8b296bb99487207d8a229c52f69d7367_cryptolocker

  • Size

    386KB

  • Sample

    240309-v7wj1aec2z

  • MD5

    8b296bb99487207d8a229c52f69d7367

  • SHA1

    baa51b3c03ec65585e8760463d555872400fd3ed

  • SHA256

    ac7a052d4cbb10a3f1eb4850ccfddf64dbabe997a3be47305c196d4878608942

  • SHA512

    2bb46c4c66d530191029076d66e504c3df17cce207623e79ad5714a88f472896d2b4bbc52277c209e5c0f126bcf6e5f0f0e75a9a16b3530cf5cec8c4278b4121

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX0:nnOflT/ZFIjBz3xjTxynGUOUhX0

Score
10/10

Malware Config

Targets

    • Target

      2024-03-09_8b296bb99487207d8a229c52f69d7367_cryptolocker

    • Size

      386KB

    • MD5

      8b296bb99487207d8a229c52f69d7367

    • SHA1

      baa51b3c03ec65585e8760463d555872400fd3ed

    • SHA256

      ac7a052d4cbb10a3f1eb4850ccfddf64dbabe997a3be47305c196d4878608942

    • SHA512

      2bb46c4c66d530191029076d66e504c3df17cce207623e79ad5714a88f472896d2b4bbc52277c209e5c0f126bcf6e5f0f0e75a9a16b3530cf5cec8c4278b4121

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzX0:nnOflT/ZFIjBz3xjTxynGUOUhX0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks