Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-14_a968bdc3832a455255d7408206d9a258_cryptolocker

  • Size

    109KB

  • Sample

    240314-km5xtshd89

  • MD5

    a968bdc3832a455255d7408206d9a258

  • SHA1

    511c88df45002bd4b75faf1a41d39bcc16015b05

  • SHA256

    eb4a76ca7812f0ea21522020deddb860643342372d378c6cbcb78d1b4618d0d2

  • SHA512

    f100f6c243fb0b4937f0fab2327ded0fdc4e9c3e1a2f149fdf043c61472f70a17ca783b498d48ba9ed49d528cd456836a5ef6c9c96d81a25789a293b59ecef50

  • SSDEEP

    1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsalRn5iF1j6GksgEne9:1nK6a+qdOOtEvwDpjy

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-03-14_a968bdc3832a455255d7408206d9a258_cryptolocker

    • Size

      109KB

    • MD5

      a968bdc3832a455255d7408206d9a258

    • SHA1

      511c88df45002bd4b75faf1a41d39bcc16015b05

    • SHA256

      eb4a76ca7812f0ea21522020deddb860643342372d378c6cbcb78d1b4618d0d2

    • SHA512

      f100f6c243fb0b4937f0fab2327ded0fdc4e9c3e1a2f149fdf043c61472f70a17ca783b498d48ba9ed49d528cd456836a5ef6c9c96d81a25789a293b59ecef50

    • SSDEEP

      1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsalRn5iF1j6GksgEne9:1nK6a+qdOOtEvwDpjy

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks