Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-02...er.exe

windows7-x64

9

2024-05-02...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-02_670c23abb528d1f1888097185fd3a884_cryptolocker

  • Size

    49KB

  • Sample

    240502-gc6jtscc99

  • MD5

    670c23abb528d1f1888097185fd3a884

  • SHA1

    ef0a98e60fd876d88fbca8f5a419a4fe7e7393be

  • SHA256

    90a82474497f4d8e09182d868fce30bb56fe9a7c44727a8ad863ebe030236362

  • SHA512

    b0c2c06a8ae3e8294a37cd4e7f1dbc49c0eaa0332f46f597e8a1b95d9b1a79ce5ba258f69ad531cb0eb7f9f2afcf619b8b98cf00efd5dff18cca04fa13b4be19

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprqQ15x8N:ZVxkGOtEvwDpjcJ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-02_670c23abb528d1f1888097185fd3a884_cryptolocker

    • Size

      49KB

    • MD5

      670c23abb528d1f1888097185fd3a884

    • SHA1

      ef0a98e60fd876d88fbca8f5a419a4fe7e7393be

    • SHA256

      90a82474497f4d8e09182d868fce30bb56fe9a7c44727a8ad863ebe030236362

    • SHA512

      b0c2c06a8ae3e8294a37cd4e7f1dbc49c0eaa0332f46f597e8a1b95d9b1a79ce5ba258f69ad531cb0eb7f9f2afcf619b8b98cf00efd5dff18cca04fa13b4be19

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprqQ15x8N:ZVxkGOtEvwDpjcJ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks