Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-29...er.exe

windows7-x64

9

2024-03-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-29_6ba8e7870941355f5bdf917f6e20a97b_cryptolocker

  • Size

    162KB

  • Sample

    240329-dhkyjage78

  • MD5

    6ba8e7870941355f5bdf917f6e20a97b

  • SHA1

    1936a986abf35ae0149ccd2614a71bfb3e7db54a

  • SHA256

    cbf1de2898f5c3ff7a19a2f98f6e9ad63107b081f9cfe649529d3fdc3e26787f

  • SHA512

    2a844c055e2327f6251c89e5b81b9bed20c79bf9b393145c518cf26f87846b42b33b9f7a88a5cfc8bcab49ba4e6f91c853ecb93f83791f2d4b45d35924348571

  • SSDEEP

    1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgp699GNtL1emmbb:u6a++OtEvwDpj6zL

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_6ba8e7870941355f5bdf917f6e20a97b_cryptolocker

    • Size

      162KB

    • MD5

      6ba8e7870941355f5bdf917f6e20a97b

    • SHA1

      1936a986abf35ae0149ccd2614a71bfb3e7db54a

    • SHA256

      cbf1de2898f5c3ff7a19a2f98f6e9ad63107b081f9cfe649529d3fdc3e26787f

    • SHA512

      2a844c055e2327f6251c89e5b81b9bed20c79bf9b393145c518cf26f87846b42b33b9f7a88a5cfc8bcab49ba4e6f91c853ecb93f83791f2d4b45d35924348571

    • SSDEEP

      1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgp699GNtL1emmbb:u6a++OtEvwDpj6zL

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks