Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-16...er.exe

windows7-x64

9

2024-04-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-16_e4b09c0548b9d530b18a5b78d08d6461_cryptolocker

  • Size

    66KB

  • Sample

    240416-sef8hach99

  • MD5

    e4b09c0548b9d530b18a5b78d08d6461

  • SHA1

    52e29a1955b0ad61a3191c9de4dc2b7eb395e93f

  • SHA256

    32c96bdad6ea30e0097377991cf8bc037538549cf8da24f42c269f681ead8408

  • SHA512

    441a5cc00a1174e03c975a31823faf0a4cb2e658b79e7ed7b68664c8b354247feedd06aac3c31f7abb1f1ffcd68d2b5e4ad08f6da004ce84fd42fb503fb86c16

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLN:aq7tdgI2MyzNORQtOflIwoHNV2XBFV70

Score
10/10

Malware Config

Targets

    • Target

      2024-04-16_e4b09c0548b9d530b18a5b78d08d6461_cryptolocker

    • Size

      66KB

    • MD5

      e4b09c0548b9d530b18a5b78d08d6461

    • SHA1

      52e29a1955b0ad61a3191c9de4dc2b7eb395e93f

    • SHA256

      32c96bdad6ea30e0097377991cf8bc037538549cf8da24f42c269f681ead8408

    • SHA512

      441a5cc00a1174e03c975a31823faf0a4cb2e658b79e7ed7b68664c8b354247feedd06aac3c31f7abb1f1ffcd68d2b5e4ad08f6da004ce84fd42fb503fb86c16

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLN:aq7tdgI2MyzNORQtOflIwoHNV2XBFV70

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks