Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-28...er.exe

windows7-x64

9

2024-03-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-28_6ad4f21f4f6607f981769d4d6d18d63a_cryptolocker

  • Size

    37KB

  • Sample

    240328-lnhpcsfd22

  • MD5

    6ad4f21f4f6607f981769d4d6d18d63a

  • SHA1

    dcf7c2d37f5f25cf0c39ef6952caa67e6ce02fb7

  • SHA256

    7f4979ed92a1efed9e42d9e45d34fb3bca6371bf666af47648c5bdd62d134c6f

  • SHA512

    22e4b2bb5038639d63cbcf1dede41923940d6b921a200765332b726dcc48d01a70510ab21b292fa8d528d70ec91d0a053ab5e3766fb47dbdf4e87b0d4fefddf3

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCp6ldggLg:X6QFElP6n+gJQMOtEvwDpjBmzDUpOdHE

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_6ad4f21f4f6607f981769d4d6d18d63a_cryptolocker

    • Size

      37KB

    • MD5

      6ad4f21f4f6607f981769d4d6d18d63a

    • SHA1

      dcf7c2d37f5f25cf0c39ef6952caa67e6ce02fb7

    • SHA256

      7f4979ed92a1efed9e42d9e45d34fb3bca6371bf666af47648c5bdd62d134c6f

    • SHA512

      22e4b2bb5038639d63cbcf1dede41923940d6b921a200765332b726dcc48d01a70510ab21b292fa8d528d70ec91d0a053ab5e3766fb47dbdf4e87b0d4fefddf3

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCp6ldggLg:X6QFElP6n+gJQMOtEvwDpjBmzDUpOdHE

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks