Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-26...er.exe

windows7-x64

9

2024-03-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-26_ad09f857c88c98241137f5ba1eb927a0_cryptolocker

  • Size

    31KB

  • Sample

    240326-hhv6qadf37

  • MD5

    ad09f857c88c98241137f5ba1eb927a0

  • SHA1

    ace9943c15d760b72d6efcc76d235f597b08a424

  • SHA256

    4b542920b075e0b0782f6e3b26c6e4888f0be71c5451320ba505e941af5f2628

  • SHA512

    963924f9186e66f5c74ecb549e0f992279b0ecf6094fe111c51808df43c5e9f5a5dcec6d55226d46cdf0c60fb7ecffe46f56e9069389fc7ed0f25b0072a7e4d9

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ5STBxVkpX:bA74zYcgT/Ekd0ryfjQRSnWBxGX

Score
10/10

Malware Config

Targets

    • Target

      2024-03-26_ad09f857c88c98241137f5ba1eb927a0_cryptolocker

    • Size

      31KB

    • MD5

      ad09f857c88c98241137f5ba1eb927a0

    • SHA1

      ace9943c15d760b72d6efcc76d235f597b08a424

    • SHA256

      4b542920b075e0b0782f6e3b26c6e4888f0be71c5451320ba505e941af5f2628

    • SHA512

      963924f9186e66f5c74ecb549e0f992279b0ecf6094fe111c51808df43c5e9f5a5dcec6d55226d46cdf0c60fb7ecffe46f56e9069389fc7ed0f25b0072a7e4d9

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ5STBxVkpX:bA74zYcgT/Ekd0ryfjQRSnWBxGX

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks