Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-19...er.exe

windows7-x64

9

2024-04-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-19_cf623d696e7623d88bf50fcc5863267d_cryptolocker

  • Size

    42KB

  • Sample

    240419-e5vlxshh6w

  • MD5

    cf623d696e7623d88bf50fcc5863267d

  • SHA1

    7bc5cc5ebb1ec8265b77b4ec9dc216e7169302ff

  • SHA256

    c735e44f751a6658645bed3a587503f4fb2d9343eb7d5637e5334dccfc37b672

  • SHA512

    edf539546e2f9529b1c2ef2e056dad53fcd9fe2ffcbfebe40a6c2a37cc9ab0268e23b336db1fb2a0cd291bef812bc305570f227e40a6c8e1b9ab142e6d03ed74

  • SSDEEP

    768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PA0:b/pYayGig5HjS3NPA0

Score
10/10
discovery

Malware Config

Targets

    • Target

      2024-04-19_cf623d696e7623d88bf50fcc5863267d_cryptolocker

    • Size

      42KB

    • MD5

      cf623d696e7623d88bf50fcc5863267d

    • SHA1

      7bc5cc5ebb1ec8265b77b4ec9dc216e7169302ff

    • SHA256

      c735e44f751a6658645bed3a587503f4fb2d9343eb7d5637e5334dccfc37b672

    • SHA512

      edf539546e2f9529b1c2ef2e056dad53fcd9fe2ffcbfebe40a6c2a37cc9ab0268e23b336db1fb2a0cd291bef812bc305570f227e40a6c8e1b9ab142e6d03ed74

    • SSDEEP

      768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PA0:b/pYayGig5HjS3NPA0

    Score
    9/10
    discovery

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks