Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-22...er.exe

windows7-x64

9

2024-04-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-22_e6a334bbb0b491618ff6765f2991108d_cryptolocker

  • Size

    34KB

  • Sample

    240422-c4eszaee67

  • MD5

    e6a334bbb0b491618ff6765f2991108d

  • SHA1

    138c2334b992f11eb47ab6335c512e5833dc6773

  • SHA256

    62fcf2c46f8fb6dfc304e530316396dda157ef8ee9443b59fff319589ff943df

  • SHA512

    626a799c6091e6032e568f24d863f9b6d5d81ef8aa1fc4e71fc60e6b69b400d72d3341edcc4771ee08d688dd03bfd910d544a8c6f080716d3de1002f064dc2fd

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lxd:bA74zYcgT/Ekd0ryfjPIunqpeNswm6d

Score
10/10

Malware Config

Targets

    • Target

      2024-04-22_e6a334bbb0b491618ff6765f2991108d_cryptolocker

    • Size

      34KB

    • MD5

      e6a334bbb0b491618ff6765f2991108d

    • SHA1

      138c2334b992f11eb47ab6335c512e5833dc6773

    • SHA256

      62fcf2c46f8fb6dfc304e530316396dda157ef8ee9443b59fff319589ff943df

    • SHA512

      626a799c6091e6032e568f24d863f9b6d5d81ef8aa1fc4e71fc60e6b69b400d72d3341edcc4771ee08d688dd03bfd910d544a8c6f080716d3de1002f064dc2fd

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lxd:bA74zYcgT/Ekd0ryfjPIunqpeNswm6d

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks