Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-04-29...er.exe

windows7-x64

9

2024-04-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-29_6614aef04d4d8a0497ed94ce3515d1f1_cryptolocker

  • Size

    40KB

  • Sample

    240429-ejn71she22

  • MD5

    6614aef04d4d8a0497ed94ce3515d1f1

  • SHA1

    aaefb736b6b94b2e035b32342f91c7418debcb4e

  • SHA256

    f546453a6cdefb6ccda27784f2db0599952cad788ac0b4f626b3b6aeed4c5bcc

  • SHA512

    139892d8df7fb08d7921234f015e6b84f06d56ff021697aa2b6211bba3ec9d0cc0b0e1d3147385369cde65412b3e7083d3472a10f7d48561ee28b41579c1fa9b

  • SSDEEP

    768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9xgy3:bIDOw9a0Dwo3P1ojvUSD79yy3

Score
10/10

Malware Config

Targets

    • Target

      2024-04-29_6614aef04d4d8a0497ed94ce3515d1f1_cryptolocker

    • Size

      40KB

    • MD5

      6614aef04d4d8a0497ed94ce3515d1f1

    • SHA1

      aaefb736b6b94b2e035b32342f91c7418debcb4e

    • SHA256

      f546453a6cdefb6ccda27784f2db0599952cad788ac0b4f626b3b6aeed4c5bcc

    • SHA512

      139892d8df7fb08d7921234f015e6b84f06d56ff021697aa2b6211bba3ec9d0cc0b0e1d3147385369cde65412b3e7083d3472a10f7d48561ee28b41579c1fa9b

    • SSDEEP

      768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9xgy3:bIDOw9a0Dwo3P1ojvUSD79yy3

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks