acb527b8e5715ab4b54e03e3cb770eef49d601ce623e971bf00c7cab1fa69242 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker
Size

58KB
Sample

240314-jszsbsec8t
MD5

f68e31334973f3e3c0b06329c6f4e30e
SHA1

98272bed2ded77ec76a118d2f83107be00ebbfb2
SHA256

acb527b8e5715ab4b54e03e3cb770eef49d601ce623e971bf00c7cab1fa69242
SHA512

8557c82d4c6df3693325042e4a1aabd16116ca9eb267473640e7e2470b82da8a6536e64eb3e1bdbc4375188e02f5f4041002dbb05c6875fffad9b8f1cee62ac2
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMYG:TCjsIOtEvwDpj5HE/OUHnSMW

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-14_f68e31334973f3e3c0b06329c6f4e30e_cryptolocker
- Size
  
  58KB
- MD5
  
  f68e31334973f3e3c0b06329c6f4e30e
- SHA1
  
  98272bed2ded77ec76a118d2f83107be00ebbfb2
- SHA256
  
  acb527b8e5715ab4b54e03e3cb770eef49d601ce623e971bf00c7cab1fa69242
- SHA512
  
  8557c82d4c6df3693325042e4a1aabd16116ca9eb267473640e7e2470b82da8a6536e64eb3e1bdbc4375188e02f5f4041002dbb05c6875fffad9b8f1cee62ac2
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMYG:TCjsIOtEvwDpj5HE/OUHnSMW
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy