Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-11...er.exe

windows7-x64

9

2024-03-11...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-11_aa01992c752cd5389bbf54168aa9537b_cryptolocker

  • Size

    78KB

  • Sample

    240311-glbe2sdc46

  • MD5

    aa01992c752cd5389bbf54168aa9537b

  • SHA1

    facffa8a3c6b20e54258fd7fd1e4cd8decac887b

  • SHA256

    15c08bfc517bcf5d8fe5e801504e1edf1da893c8b76dc8aa25c3bfb39d542eac

  • SHA512

    fee7a5da10cf23599cc63a8f537545e17c0b30f353f72c7e69f06701dc6de14b6c4d8de5070ef33d57362c3bade8ec09ff38b3e83b8827d25a3cc7a9666c2647

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KEWTPP:ZVxkGOtEvwDpjcaxK

Score
10/10

Malware Config

Targets

    • Target

      2024-03-11_aa01992c752cd5389bbf54168aa9537b_cryptolocker

    • Size

      78KB

    • MD5

      aa01992c752cd5389bbf54168aa9537b

    • SHA1

      facffa8a3c6b20e54258fd7fd1e4cd8decac887b

    • SHA256

      15c08bfc517bcf5d8fe5e801504e1edf1da893c8b76dc8aa25c3bfb39d542eac

    • SHA512

      fee7a5da10cf23599cc63a8f537545e17c0b30f353f72c7e69f06701dc6de14b6c4d8de5070ef33d57362c3bade8ec09ff38b3e83b8827d25a3cc7a9666c2647

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KEWTPP:ZVxkGOtEvwDpjcaxK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks