712fd202cb9fa7bb29ca3cbe98ee1666ff1a6a831689d1d15a8f67ee59de48f4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-04-10...er.exe

windows7-x64

9

2024-04-10...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-04-10_71c123b7b14cd25ae73b95da0e5c9f84_cryptolocker
Size

78KB
Sample

240410-x8nlwscf3x
MD5

71c123b7b14cd25ae73b95da0e5c9f84
SHA1

d3b3fe13eae32dc8897998a61faa29f10bd4a38f
SHA256

712fd202cb9fa7bb29ca3cbe98ee1666ff1a6a831689d1d15a8f67ee59de48f4
SHA512

8b9d9f2c55d5fd3ebc0f1d32f1019a04abf0baeeaeac15a069ee98e8980fa41ef0018202394218bc4a90e668c16524b8b56821ea4d5f5c75121527542e5a2cca
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNluoA:V6a+pOtEvwDpjvpW

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-04-10_71c123b7b14cd25ae73b95da0e5c9f84_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-10_71c123b7b14cd25ae73b95da0e5c9f84_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-10_71c123b7b14cd25ae73b95da0e5c9f84_cryptolocker
- Size
  
  78KB
- MD5
  
  71c123b7b14cd25ae73b95da0e5c9f84
- SHA1
  
  d3b3fe13eae32dc8897998a61faa29f10bd4a38f
- SHA256
  
  712fd202cb9fa7bb29ca3cbe98ee1666ff1a6a831689d1d15a8f67ee59de48f4
- SHA512
  
  8b9d9f2c55d5fd3ebc0f1d32f1019a04abf0baeeaeac15a069ee98e8980fa41ef0018202394218bc4a90e668c16524b8b56821ea4d5f5c75121527542e5a2cca
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNluoA:V6a+pOtEvwDpjvpW
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.