Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-18...er.exe

windows7-x64

9

2024-03-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-18_6f6e71fb1259f94a45f5192f14a6ba5b_cryptolocker

  • Size

    40KB

  • Sample

    240318-zbzn1aab9y

  • MD5

    6f6e71fb1259f94a45f5192f14a6ba5b

  • SHA1

    f57dafd1a9ae50c1d467041c1ae2048da8e97c02

  • SHA256

    200f63d2cf94209abf33bad87c590b393b485a0308f0b1875c5651c848a2c9e1

  • SHA512

    2cf67aff7bdc5a2d3a9caae9b0456b22fab0481fa454c84297b7b8c858f6f92d4beb8895fe7fb559321873ead73762db0aea623685e43ff12801309c61dc5813

  • SSDEEP

    384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3NbF0Qk/:bAvJCYOOvbRPDEgXrNekd7l94i3pF0p

Score
10/10

Malware Config

Targets

    • Target

      2024-03-18_6f6e71fb1259f94a45f5192f14a6ba5b_cryptolocker

    • Size

      40KB

    • MD5

      6f6e71fb1259f94a45f5192f14a6ba5b

    • SHA1

      f57dafd1a9ae50c1d467041c1ae2048da8e97c02

    • SHA256

      200f63d2cf94209abf33bad87c590b393b485a0308f0b1875c5651c848a2c9e1

    • SHA512

      2cf67aff7bdc5a2d3a9caae9b0456b22fab0481fa454c84297b7b8c858f6f92d4beb8895fe7fb559321873ead73762db0aea623685e43ff12801309c61dc5813

    • SSDEEP

      384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3NbF0Qk/:bAvJCYOOvbRPDEgXrNekd7l94i3pF0p

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks