Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-22...er.exe

windows7-x64

9

2024-04-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-22_5a647663b47a735324711aad5b229794_cryptolocker

  • Size

    43KB

  • Sample

    240422-ff5w2aga31

  • MD5

    5a647663b47a735324711aad5b229794

  • SHA1

    b5dc46aeeeedda9544a3e23eecf3e6611b5e0e4c

  • SHA256

    7f34b7e5315cad4a9f83947cf51ca2a24367f80fc72ca10ff1aded4592e9a66d

  • SHA512

    00af120964e6049a6540b4928cfb6cf20423933375d01402a373030d72039afa2be7d2cb606d258f8370944f23af82b786cb852f56ffa62eac27a3097eaa06df

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqo:bc/y2lkF0+Beqo

Score
10/10

Malware Config

Targets

    • Target

      2024-04-22_5a647663b47a735324711aad5b229794_cryptolocker

    • Size

      43KB

    • MD5

      5a647663b47a735324711aad5b229794

    • SHA1

      b5dc46aeeeedda9544a3e23eecf3e6611b5e0e4c

    • SHA256

      7f34b7e5315cad4a9f83947cf51ca2a24367f80fc72ca10ff1aded4592e9a66d

    • SHA512

      00af120964e6049a6540b4928cfb6cf20423933375d01402a373030d72039afa2be7d2cb606d258f8370944f23af82b786cb852f56ffa62eac27a3097eaa06df

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqo:bc/y2lkF0+Beqo

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks