Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-21...er.exe

windows7-x64

9

2024-04-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-21_c33905c490a258a351e134e879a51952_cryptolocker

  • Size

    33KB

  • Sample

    240421-gpm81sch56

  • MD5

    c33905c490a258a351e134e879a51952

  • SHA1

    95c02f5f048e219d5a4fc0bfdc271dd07b3df107

  • SHA256

    1dd2843918e076a90bf52dd0b5a84dbc3618d085fbc9d2de419523d75449056f

  • SHA512

    f4216cc49ef487d559a6abaa76ac947e8525c0dbdac557750fb642d164ef73ce9e7f703856b1a8d0a0a9d198f02b2098cdc5719027ec41e6d21774d3c080e213

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5m:bxNrC7kYo1Fxf2rYy

Score
10/10

Malware Config

Targets

    • Target

      2024-04-21_c33905c490a258a351e134e879a51952_cryptolocker

    • Size

      33KB

    • MD5

      c33905c490a258a351e134e879a51952

    • SHA1

      95c02f5f048e219d5a4fc0bfdc271dd07b3df107

    • SHA256

      1dd2843918e076a90bf52dd0b5a84dbc3618d085fbc9d2de419523d75449056f

    • SHA512

      f4216cc49ef487d559a6abaa76ac947e8525c0dbdac557750fb642d164ef73ce9e7f703856b1a8d0a0a9d198f02b2098cdc5719027ec41e6d21774d3c080e213

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5m:bxNrC7kYo1Fxf2rYy

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks