Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-12...er.exe

windows7-x64

9

2024-03-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-12_0bdcb1d3d6aa99cbeac61ff42036b856_cryptolocker

  • Size

    38KB

  • Sample

    240312-j94slsce5x

  • MD5

    0bdcb1d3d6aa99cbeac61ff42036b856

  • SHA1

    51b277859086faff66e4f9a5ae578652337d329d

  • SHA256

    46d5ce51339c5d18213b39e71b2df30e4cfcf5de850160ca77bd05813407c38b

  • SHA512

    49d085e1d69447161f1d38f59619392a373f537d61af2f83e6b557f6b899d4f28082627550e37bb26b7ab6ea2c5f394918d6317b8a68669004b8eba726053cf0

  • SSDEEP

    384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfX2K:bgX4zYcgTEu6QOaryfjqDDw3sCu5mX1

Score
10/10

Malware Config

Targets

    • Target

      2024-03-12_0bdcb1d3d6aa99cbeac61ff42036b856_cryptolocker

    • Size

      38KB

    • MD5

      0bdcb1d3d6aa99cbeac61ff42036b856

    • SHA1

      51b277859086faff66e4f9a5ae578652337d329d

    • SHA256

      46d5ce51339c5d18213b39e71b2df30e4cfcf5de850160ca77bd05813407c38b

    • SHA512

      49d085e1d69447161f1d38f59619392a373f537d61af2f83e6b557f6b899d4f28082627550e37bb26b7ab6ea2c5f394918d6317b8a68669004b8eba726053cf0

    • SSDEEP

      384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfX2K:bgX4zYcgTEu6QOaryfjqDDw3sCu5mX1

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks