Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_8306a7f1573cfc76c4c259e9e9b8a3fd_cryptolocker

  • Size

    47KB

  • Sample

    240428-z9j17she62

  • MD5

    8306a7f1573cfc76c4c259e9e9b8a3fd

  • SHA1

    0f9175485f0a92f4bee99ee0e3b2bf300be4799e

  • SHA256

    0e6d0c8c07e53aa456b044fe6392d9363511a3229a59eaa7c936b77b238a7d4b

  • SHA512

    70d8ae4ee16161ac444bbb9a5425068d24c4d0de10ed1712a5893c39df1a0aa9f31f29e6dc15262eb652814bf85ace035d1f9177cc1cd676f557b7599c1b2f44

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsmm:xj+VGMOtEvwDpjy+viHsn

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_8306a7f1573cfc76c4c259e9e9b8a3fd_cryptolocker

    • Size

      47KB

    • MD5

      8306a7f1573cfc76c4c259e9e9b8a3fd

    • SHA1

      0f9175485f0a92f4bee99ee0e3b2bf300be4799e

    • SHA256

      0e6d0c8c07e53aa456b044fe6392d9363511a3229a59eaa7c936b77b238a7d4b

    • SHA512

      70d8ae4ee16161ac444bbb9a5425068d24c4d0de10ed1712a5893c39df1a0aa9f31f29e6dc15262eb652814bf85ace035d1f9177cc1cd676f557b7599c1b2f44

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsmm:xj+VGMOtEvwDpjy+viHsn

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks