Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-20...er.exe

windows7-x64

9

2024-04-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-20_abc4b2410bfe0a19fa5089b4bcc8dd13_cryptolocker

  • Size

    100KB

  • Sample

    240420-jdtmrscc8y

  • MD5

    abc4b2410bfe0a19fa5089b4bcc8dd13

  • SHA1

    a975424bff3a42184fc0a2c398f3f46660cc4af5

  • SHA256

    d9e53e88b1602297f7a675da861a3872ec95ea2eb070b2c5783e5a0ae1546062

  • SHA512

    45ea18b035ce4d55ecd42b6064bf0efd575fc676e77b971fac0226d72af7f287b717b4cb2d3a0b5129d40f4b01a3d668a8351ce08bcbf7b1adcb82f6fb602b80

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPeBT:AnBdOOtEvwDpj6zc

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-04-20_abc4b2410bfe0a19fa5089b4bcc8dd13_cryptolocker

    • Size

      100KB

    • MD5

      abc4b2410bfe0a19fa5089b4bcc8dd13

    • SHA1

      a975424bff3a42184fc0a2c398f3f46660cc4af5

    • SHA256

      d9e53e88b1602297f7a675da861a3872ec95ea2eb070b2c5783e5a0ae1546062

    • SHA512

      45ea18b035ce4d55ecd42b6064bf0efd575fc676e77b971fac0226d72af7f287b717b4cb2d3a0b5129d40f4b01a3d668a8351ce08bcbf7b1adcb82f6fb602b80

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviPeBT:AnBdOOtEvwDpj6zc

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks