5f7e3217097d7551a4b3230767b8fd653a4a748b616323d34b6a79fc7d145135 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-03-26...er.exe

windows7-x64

9

2024-03-26...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-26_fbe4159e31e0942ec8048a7658b48be7_cryptolocker
Size

75KB
Sample

240326-n9yc2scf9v
MD5

fbe4159e31e0942ec8048a7658b48be7
SHA1

3a9db157261305844f8c0d730da8a54f97e4e8fb
SHA256

5f7e3217097d7551a4b3230767b8fd653a4a748b616323d34b6a79fc7d145135
SHA512

00801cf414b0298c0c28119bb9c73b0b350f165cb5f6b08a8a6f76d48e8ed10127675e8b2d9c20fa22387a0d5c2272d5bf6d7f518ea6fc691d6dc2f03c90d668
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1RUr:X6a+SOtEvwDpjBZYvQd2q

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-26_fbe4159e31e0942ec8048a7658b48be7_cryptolocker.exe

Resource

win7-20240319-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-26_fbe4159e31e0942ec8048a7658b48be7_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-26_fbe4159e31e0942ec8048a7658b48be7_cryptolocker
- Size
  
  75KB
- MD5
  
  fbe4159e31e0942ec8048a7658b48be7
- SHA1
  
  3a9db157261305844f8c0d730da8a54f97e4e8fb
- SHA256
  
  5f7e3217097d7551a4b3230767b8fd653a4a748b616323d34b6a79fc7d145135
- SHA512
  
  00801cf414b0298c0c28119bb9c73b0b350f165cb5f6b08a8a6f76d48e8ed10127675e8b2d9c20fa22387a0d5c2272d5bf6d7f518ea6fc691d6dc2f03c90d668
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1RUr:X6a+SOtEvwDpjBZYvQd2q
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.