Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-15...er.exe

windows7-x64

9

2024-04-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-15_1c9d10414cc568e79e37c8490617fec6_cryptolocker

  • Size

    389KB

  • Sample

    240415-yw8a7shc51

  • MD5

    1c9d10414cc568e79e37c8490617fec6

  • SHA1

    f36cef10e1a2eb68b5f1838df6f9457133c7b252

  • SHA256

    59f4358d37ce296f44d021ff8d39c40dce4140babbbfc0960a89f982cc0c88fd

  • SHA512

    0e293a6bbfd17995965a1d24f402dc50b38035eb91ebd1cd260d2add1694c74f6068e16239d73cbcec0d5d067bdee94e09aa6e699a39d446a1202fb83bcec3cb

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXe:nnOflT/ZFIjBz3xjTxynGUOUhXe

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_1c9d10414cc568e79e37c8490617fec6_cryptolocker

    • Size

      389KB

    • MD5

      1c9d10414cc568e79e37c8490617fec6

    • SHA1

      f36cef10e1a2eb68b5f1838df6f9457133c7b252

    • SHA256

      59f4358d37ce296f44d021ff8d39c40dce4140babbbfc0960a89f982cc0c88fd

    • SHA512

      0e293a6bbfd17995965a1d24f402dc50b38035eb91ebd1cd260d2add1694c74f6068e16239d73cbcec0d5d067bdee94e09aa6e699a39d446a1202fb83bcec3cb

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXe:nnOflT/ZFIjBz3xjTxynGUOUhXe

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks