Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-15...er.exe

windows7-x64

9

2024-04-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-15_6d8129968a62e5934597561ee18f941c_cryptolocker

  • Size

    41KB

  • Sample

    240415-zh8v9afh42

  • MD5

    6d8129968a62e5934597561ee18f941c

  • SHA1

    8a3f5e2adcf0967055a2064a8c5e730f38a9b384

  • SHA256

    32b8e7191894d738bbb3e8e833ff0f2f4220b303f1fbb59ff23912b05337d618

  • SHA512

    655882ae663854636edcd88e041ad851106e76d0f8ae0ecbe7b4f9be6095ff0476d8dfe7e3ba3dc1aa2a2b78fd5a714107f4db984e9b6871e231d66f9ac4ecd8

  • SSDEEP

    384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOK:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/M

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_6d8129968a62e5934597561ee18f941c_cryptolocker

    • Size

      41KB

    • MD5

      6d8129968a62e5934597561ee18f941c

    • SHA1

      8a3f5e2adcf0967055a2064a8c5e730f38a9b384

    • SHA256

      32b8e7191894d738bbb3e8e833ff0f2f4220b303f1fbb59ff23912b05337d618

    • SHA512

      655882ae663854636edcd88e041ad851106e76d0f8ae0ecbe7b4f9be6095ff0476d8dfe7e3ba3dc1aa2a2b78fd5a714107f4db984e9b6871e231d66f9ac4ecd8

    • SSDEEP

      384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOK:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/M

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks