Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_b6296c9a5647f3a372538fd0155e3010_cryptolocker

  • Size

    41KB

  • Sample

    240428-s784zsbd3y

  • MD5

    b6296c9a5647f3a372538fd0155e3010

  • SHA1

    47e027819c590ce30faf148322c3201b02571241

  • SHA256

    d71b7d7b8cf2e7614387fe3bf7b879d79bd233a8ad2046a646c22485c00279d1

  • SHA512

    913dbc32203aec78f442cba605a22aadedb0eff4bca9fb5dc7bc241c76bb20a0d97ff07fd1e01bf6be92fe09172cd2fc9c62b4a67f0fdba91f4d6ed7b8e53f90

  • SSDEEP

    768:bAvJCYOOvbRPDEgXrNekd7l94i3py/yY/Jt:bAvJCF+RQgJeab4sy/lT

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_b6296c9a5647f3a372538fd0155e3010_cryptolocker

    • Size

      41KB

    • MD5

      b6296c9a5647f3a372538fd0155e3010

    • SHA1

      47e027819c590ce30faf148322c3201b02571241

    • SHA256

      d71b7d7b8cf2e7614387fe3bf7b879d79bd233a8ad2046a646c22485c00279d1

    • SHA512

      913dbc32203aec78f442cba605a22aadedb0eff4bca9fb5dc7bc241c76bb20a0d97ff07fd1e01bf6be92fe09172cd2fc9c62b4a67f0fdba91f4d6ed7b8e53f90

    • SSDEEP

      768:bAvJCYOOvbRPDEgXrNekd7l94i3py/yY/Jt:bAvJCF+RQgJeab4sy/lT

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks