Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-16...er.exe

windows7-x64

9

2024-04-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-16_d782aeed7191c1c538333afa887fbd5d_cryptolocker

  • Size

    45KB

  • Sample

    240416-er56hahb64

  • MD5

    d782aeed7191c1c538333afa887fbd5d

  • SHA1

    bd205da7731f604f8c730a7da8def8f40611cdce

  • SHA256

    5bab66826ebb565ea71f35db1ae8f97b3b2292e1ec7e064198c5a1868505c5e1

  • SHA512

    825a4cbbb75a96b0b20f233694f2acc82e65769e450f461ea35ddd38ea7bc5542759eeb5e1fd8b1aea04d5b968e1c5bb7cf4adc02fde7cd51fdd9d7bb7e2733c

  • SSDEEP

    768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkY:P6Q0ElP6G+gJQMOtEvwDpjB8WMlT

Score
10/10

Malware Config

Targets

    • Target

      2024-04-16_d782aeed7191c1c538333afa887fbd5d_cryptolocker

    • Size

      45KB

    • MD5

      d782aeed7191c1c538333afa887fbd5d

    • SHA1

      bd205da7731f604f8c730a7da8def8f40611cdce

    • SHA256

      5bab66826ebb565ea71f35db1ae8f97b3b2292e1ec7e064198c5a1868505c5e1

    • SHA512

      825a4cbbb75a96b0b20f233694f2acc82e65769e450f461ea35ddd38ea7bc5542759eeb5e1fd8b1aea04d5b968e1c5bb7cf4adc02fde7cd51fdd9d7bb7e2733c

    • SSDEEP

      768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkY:P6Q0ElP6G+gJQMOtEvwDpjB8WMlT

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks