Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-26...er.exe

windows7-x64

9

2024-03-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-26_b3b374d924d026ef0aa83e2a9859556c_cryptolocker

  • Size

    33KB

  • Sample

    240326-3swv8aaa5v

  • MD5

    b3b374d924d026ef0aa83e2a9859556c

  • SHA1

    4354ae36f6d8ad42c4258dc039bfcf33e8a792cf

  • SHA256

    86571e3a12f4369c32db5c276d245d10533f0d27a3125d5f20fac5de6bdb7db7

  • SHA512

    885b0d5a3f513ecd84c3d0e2cfaa67ac1527f90434cef89886a1bce4e6144e66ccd4ba51663f2bcd2df354d20a0b6bfa2096829f5b0403eb0948423c37a7ed4b

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsYo83:bA74zYcgT/Ekd0ryfjPIunvsi3

Score
10/10

Malware Config

Targets

    • Target

      2024-03-26_b3b374d924d026ef0aa83e2a9859556c_cryptolocker

    • Size

      33KB

    • MD5

      b3b374d924d026ef0aa83e2a9859556c

    • SHA1

      4354ae36f6d8ad42c4258dc039bfcf33e8a792cf

    • SHA256

      86571e3a12f4369c32db5c276d245d10533f0d27a3125d5f20fac5de6bdb7db7

    • SHA512

      885b0d5a3f513ecd84c3d0e2cfaa67ac1527f90434cef89886a1bce4e6144e66ccd4ba51663f2bcd2df354d20a0b6bfa2096829f5b0403eb0948423c37a7ed4b

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsYo83:bA74zYcgT/Ekd0ryfjPIunvsi3

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks