Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_f40a8e0c9f12e5c5f4af8914c014a710_cryptolocker

  • Size

    45KB

  • Sample

    240428-gjzpvshd94

  • MD5

    f40a8e0c9f12e5c5f4af8914c014a710

  • SHA1

    9a4d2ac3040722e2c6901b3e46eccb173e487825

  • SHA256

    612e64a903c06462fabdf92898b38607f5f1fa5db7acfd2acb8854429baf18ad

  • SHA512

    d085b0068c67c49f07d8c0381014adf37b3eadab1f4f630dc03f166e28b523c700ebb84d2c17d858936d1b18c7324dd5dead6e360f34cacfd441fe91ab5848a4

  • SSDEEP

    768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPH:P6QFElP6k+MRQMOtEvwDpjBQpVXC

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_f40a8e0c9f12e5c5f4af8914c014a710_cryptolocker

    • Size

      45KB

    • MD5

      f40a8e0c9f12e5c5f4af8914c014a710

    • SHA1

      9a4d2ac3040722e2c6901b3e46eccb173e487825

    • SHA256

      612e64a903c06462fabdf92898b38607f5f1fa5db7acfd2acb8854429baf18ad

    • SHA512

      d085b0068c67c49f07d8c0381014adf37b3eadab1f4f630dc03f166e28b523c700ebb84d2c17d858936d1b18c7324dd5dead6e360f34cacfd441fe91ab5848a4

    • SSDEEP

      768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPH:P6QFElP6k+MRQMOtEvwDpjBQpVXC

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks