Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-25...er.exe

windows7-x64

9

2024-04-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-25_4bf2ada34e5ef3f2b99078e0176ec527_cryptolocker

  • Size

    34KB

  • Sample

    240425-e66qksfe5v

  • MD5

    4bf2ada34e5ef3f2b99078e0176ec527

  • SHA1

    4f45aeb564c186bdf844b00ccf8509622764640b

  • SHA256

    72e080f459b1af35882eacd1de96225408329f793fe7dacfc632d147ce73cf54

  • SHA512

    bfcb97fa0f7c5e65b8539326d1df647afdfa3e392bb43e9f69d24b231a3e8f98fde3af4a2392feb5daf65349ebb8a7af1ae2c06b4c57928b5451f0dabd7d298d

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtzxt16D:b7o/2n1TCraU6GD1a4Xt9bRwrbK

Score
10/10

Malware Config

Targets

    • Target

      2024-04-25_4bf2ada34e5ef3f2b99078e0176ec527_cryptolocker

    • Size

      34KB

    • MD5

      4bf2ada34e5ef3f2b99078e0176ec527

    • SHA1

      4f45aeb564c186bdf844b00ccf8509622764640b

    • SHA256

      72e080f459b1af35882eacd1de96225408329f793fe7dacfc632d147ce73cf54

    • SHA512

      bfcb97fa0f7c5e65b8539326d1df647afdfa3e392bb43e9f69d24b231a3e8f98fde3af4a2392feb5daf65349ebb8a7af1ae2c06b4c57928b5451f0dabd7d298d

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtzxt16D:b7o/2n1TCraU6GD1a4Xt9bRwrbK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks