Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_b3d23378754a9e941c348ef8e9ff2f9d_cryptolocker

  • Size

    67KB

  • Sample

    240428-fegstagf6z

  • MD5

    b3d23378754a9e941c348ef8e9ff2f9d

  • SHA1

    6db89799c2e2f862d09a7984e1886d8e72e6b6c8

  • SHA256

    3a1c55a176ab9c45b62da0aa6aefe6c234e4811e4db6a2c83240564b947a531e

  • SHA512

    1a5403de83ed3ebb3fe397e93213d6e4daf7719af7ea6fa018e9d927418d670a3da9f25f821003c512897584c06e771d7577c260b0a9c16da530b4f0242bd3c7

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLB:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7g

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_b3d23378754a9e941c348ef8e9ff2f9d_cryptolocker

    • Size

      67KB

    • MD5

      b3d23378754a9e941c348ef8e9ff2f9d

    • SHA1

      6db89799c2e2f862d09a7984e1886d8e72e6b6c8

    • SHA256

      3a1c55a176ab9c45b62da0aa6aefe6c234e4811e4db6a2c83240564b947a531e

    • SHA512

      1a5403de83ed3ebb3fe397e93213d6e4daf7719af7ea6fa018e9d927418d670a3da9f25f821003c512897584c06e771d7577c260b0a9c16da530b4f0242bd3c7

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vaRLB:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7g

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks