Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-19...er.exe

windows7-x64

9

2024-03-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-19_b0e3b2fc4cff0adbcf57e9136fdd27f1_cryptolocker

  • Size

    60KB

  • Sample

    240319-vcw72shf3s

  • MD5

    b0e3b2fc4cff0adbcf57e9136fdd27f1

  • SHA1

    63ab7574d76da320bdae388b542d1281af5e29f1

  • SHA256

    087ae20a6b5b1cfc4a103469391db5cbaa6915bff7629b1067a004c87bb94606

  • SHA512

    27e8a11365da523990af273b8706bb0ecd7a2dc3a0f3f3874d8e2a754f624e103c76a21ba7c69a563142b7a1a403f78f8929c314e0144dbdc001e682d67eecdf

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCY8EQMjpi/Wpi3B3URiLnuoUwUsfqB1D:vj+jsMQMOtEvwDpj5Hy7B3gG8xzUIN

Score
10/10

Malware Config

Targets

    • Target

      2024-03-19_b0e3b2fc4cff0adbcf57e9136fdd27f1_cryptolocker

    • Size

      60KB

    • MD5

      b0e3b2fc4cff0adbcf57e9136fdd27f1

    • SHA1

      63ab7574d76da320bdae388b542d1281af5e29f1

    • SHA256

      087ae20a6b5b1cfc4a103469391db5cbaa6915bff7629b1067a004c87bb94606

    • SHA512

      27e8a11365da523990af273b8706bb0ecd7a2dc3a0f3f3874d8e2a754f624e103c76a21ba7c69a563142b7a1a403f78f8929c314e0144dbdc001e682d67eecdf

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCY8EQMjpi/Wpi3B3URiLnuoUwUsfqB1D:vj+jsMQMOtEvwDpj5Hy7B3gG8xzUIN

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks