Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-01...er.exe

windows7-x64

9

2024-05-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-01_45d64ae408005e20be07cbb22728d6fd_cryptolocker

  • Size

    61KB

  • Sample

    240501-eq3zrafd4y

  • MD5

    45d64ae408005e20be07cbb22728d6fd

  • SHA1

    e6bdc056992e5523920dfc2d8b7b7e3b49064245

  • SHA256

    dfe4a00f4d0620b3a646e7fb78c8ff72e80e6c00db33a5c6a4279d45a3b74c3c

  • SHA512

    cab4adbb79092568e0575a94adeec823a46e486f33e2506c82177b080db07242bb80eeb25f09b2abcd4300f7398575485124978010bb4f6d228b97d3a0d3921a

  • SSDEEP

    768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9R:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWw

Score
10/10

Malware Config

Targets

    • Target

      2024-05-01_45d64ae408005e20be07cbb22728d6fd_cryptolocker

    • Size

      61KB

    • MD5

      45d64ae408005e20be07cbb22728d6fd

    • SHA1

      e6bdc056992e5523920dfc2d8b7b7e3b49064245

    • SHA256

      dfe4a00f4d0620b3a646e7fb78c8ff72e80e6c00db33a5c6a4279d45a3b74c3c

    • SHA512

      cab4adbb79092568e0575a94adeec823a46e486f33e2506c82177b080db07242bb80eeb25f09b2abcd4300f7398575485124978010bb4f6d228b97d3a0d3921a

    • SSDEEP

      768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9R:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWw

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks