Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-15...er.exe

windows7-x64

9

2024-04-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-15_6a965c16e9013fff58f304996521f95a_cryptolocker

  • Size

    126KB

  • Sample

    240415-gqbavagc86

  • MD5

    6a965c16e9013fff58f304996521f95a

  • SHA1

    11cad48ec0dd9bba2e9e2599c60bbea71402457a

  • SHA256

    69f3193586d119364856974fa6b380eb7ee4806c1505a28cb4007379155edba6

  • SHA512

    d8b1ced8ca6d295d9eaf16ccfb63c43f9bc751d8e00cc66d0e3647aecaf0a3b3a03ec43abfd04266a4afb9c38ef1a168c9abbaa9b08d68aae6ef96be71f062bc

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//LITd:vCjsIOtEvwDpj5H9YvQd2RU

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_6a965c16e9013fff58f304996521f95a_cryptolocker

    • Size

      126KB

    • MD5

      6a965c16e9013fff58f304996521f95a

    • SHA1

      11cad48ec0dd9bba2e9e2599c60bbea71402457a

    • SHA256

      69f3193586d119364856974fa6b380eb7ee4806c1505a28cb4007379155edba6

    • SHA512

      d8b1ced8ca6d295d9eaf16ccfb63c43f9bc751d8e00cc66d0e3647aecaf0a3b3a03ec43abfd04266a4afb9c38ef1a168c9abbaa9b08d68aae6ef96be71f062bc

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//LITd:vCjsIOtEvwDpj5H9YvQd2RU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks