c37d011756c1870fadc3e3556ff7760717cc80dcce0fb4f941ae6cc5acb44f42 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-04-11...er.exe

windows7-x64

9

2024-04-11...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-04-11_df5a390eb3e19ba7b15887a8a0606dce_cryptolocker
Size

62KB
Sample

240411-g8dtpaea49
MD5

df5a390eb3e19ba7b15887a8a0606dce
SHA1

059ad1dd2345b5bc9370dc2fe2b100ae59791628
SHA256

c37d011756c1870fadc3e3556ff7760717cc80dcce0fb4f941ae6cc5acb44f42
SHA512

bf4fa4b895adea624011bf413192ff472a7aa9e2e730a3589189a520875f4fe0033d843c06c33667cf0f854f5918f4195a064985b6c4f8034cbf72fa6aa4e429
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHa+:btng54SMLr+/AO/kIhfoKMHdc

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-04-11_df5a390eb3e19ba7b15887a8a0606dce_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-11_df5a390eb3e19ba7b15887a8a0606dce_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-11_df5a390eb3e19ba7b15887a8a0606dce_cryptolocker
- Size
  
  62KB
- MD5
  
  df5a390eb3e19ba7b15887a8a0606dce
- SHA1
  
  059ad1dd2345b5bc9370dc2fe2b100ae59791628
- SHA256
  
  c37d011756c1870fadc3e3556ff7760717cc80dcce0fb4f941ae6cc5acb44f42
- SHA512
  
  bf4fa4b895adea624011bf413192ff472a7aa9e2e730a3589189a520875f4fe0033d843c06c33667cf0f854f5918f4195a064985b6c4f8034cbf72fa6aa4e429
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHa+:btng54SMLr+/AO/kIhfoKMHdc
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy