c3238583dd57e9966962dcee11098e4e1cf4677e498213cd5c28a357d79c0e66 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-03-13...er.exe

windows7-x64

9

2024-03-13...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-13_a1453dfbb69b60e20286711630c93cec_cryptolocker
Size

34KB
Sample

240313-fgd5psdb3s
MD5

a1453dfbb69b60e20286711630c93cec
SHA1

f83c18bb41b939af9075347496c082b0dbd9b827
SHA256

c3238583dd57e9966962dcee11098e4e1cf4677e498213cd5c28a357d79c0e66
SHA512

d6629a3da666955286ee32868007b750983a51814c539fe8813edf1d871eb7b8ee878434eb992061205a790aecf9ec959a77c6eb28fa23f1115d8c3d2dc74e9e
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexRlSrxVfdsHYwr:bA74zYcgT/Ekd0ryfjPIunYw16Nr

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-03-13_a1453dfbb69b60e20286711630c93cec_cryptolocker.exe

Resource

win7-20240220-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-13_a1453dfbb69b60e20286711630c93cec_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-13_a1453dfbb69b60e20286711630c93cec_cryptolocker
- Size
  
  34KB
- MD5
  
  a1453dfbb69b60e20286711630c93cec
- SHA1
  
  f83c18bb41b939af9075347496c082b0dbd9b827
- SHA256
  
  c3238583dd57e9966962dcee11098e4e1cf4677e498213cd5c28a357d79c0e66
- SHA512
  
  d6629a3da666955286ee32868007b750983a51814c539fe8813edf1d871eb7b8ee878434eb992061205a790aecf9ec959a77c6eb28fa23f1115d8c3d2dc74e9e
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexRlSrxVfdsHYwr:bA74zYcgT/Ekd0ryfjPIunYw16Nr
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy