Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-25...er.exe

windows7-x64

9

2024-03-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-25_2eb70e8351d1afa53505c0e76bba5449_cryptolocker

  • Size

    74KB

  • Sample

    240325-ty25rach42

  • MD5

    2eb70e8351d1afa53505c0e76bba5449

  • SHA1

    7693fb0af9fd9ac634bcd576802642cc9de99cce

  • SHA256

    4e77b831a488f99fbe9720fdcf6c562298ac83c51c8f80e7e25f8cd780af6f5a

  • SHA512

    06f3c5c357e131674d7df1c1a6c181b5d16477e7459362224bff6c3b7dcc071d4e3d315ef7db7f6eb4d73bdc21ab71866935bdd82062572e0548283c519e5a5c

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1Ux:X6a+SOtEvwDpjBZYvQd2W

Score
10/10

Malware Config

Targets

    • Target

      2024-03-25_2eb70e8351d1afa53505c0e76bba5449_cryptolocker

    • Size

      74KB

    • MD5

      2eb70e8351d1afa53505c0e76bba5449

    • SHA1

      7693fb0af9fd9ac634bcd576802642cc9de99cce

    • SHA256

      4e77b831a488f99fbe9720fdcf6c562298ac83c51c8f80e7e25f8cd780af6f5a

    • SHA512

      06f3c5c357e131674d7df1c1a6c181b5d16477e7459362224bff6c3b7dcc071d4e3d315ef7db7f6eb4d73bdc21ab71866935bdd82062572e0548283c519e5a5c

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1Ux:X6a+SOtEvwDpjBZYvQd2W

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks