Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-01...er.exe

windows7-x64

9

2024-05-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-01_d832d3808180a2094f2dc19a4ed0f732_cryptolocker

  • Size

    64KB

  • Sample

    240501-fefwhsad43

  • MD5

    d832d3808180a2094f2dc19a4ed0f732

  • SHA1

    1ea9135b8f9f17c0dad22396c56da25f17e557a1

  • SHA256

    7b7f4e36c64905a2b9bbda14020cd2419c0c5fcd4ed3ab824e4b8a2271945ee9

  • SHA512

    83867819a63cded055c891280e24c9bb0cf37f76459a6ae49057c3672d5ea6eb3ca5cfc49ed0d425ce38e7d2d079055eb943b9b47718f852e206c3d975168c2b

  • SSDEEP

    1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHaxp:btng54SMLr+/AO/kIhfoKMHdPp

Score
10/10

Malware Config

Targets

    • Target

      2024-05-01_d832d3808180a2094f2dc19a4ed0f732_cryptolocker

    • Size

      64KB

    • MD5

      d832d3808180a2094f2dc19a4ed0f732

    • SHA1

      1ea9135b8f9f17c0dad22396c56da25f17e557a1

    • SHA256

      7b7f4e36c64905a2b9bbda14020cd2419c0c5fcd4ed3ab824e4b8a2271945ee9

    • SHA512

      83867819a63cded055c891280e24c9bb0cf37f76459a6ae49057c3672d5ea6eb3ca5cfc49ed0d425ce38e7d2d079055eb943b9b47718f852e206c3d975168c2b

    • SSDEEP

      1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHaxp:btng54SMLr+/AO/kIhfoKMHdPp

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks