44c333534980e561f853b50225f51d4ba3faa6bd90f424f38986b52d4657cdd8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-05-03...er.exe

windows7-x64

9

2024-05-03...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-03_986857b6e5dd207bdae00aa89bc35c9c_cryptolocker
Size

37KB
Sample

240503-sxb2haab71
MD5

986857b6e5dd207bdae00aa89bc35c9c
SHA1

5abc792fa112537b55a94748df0b5774da8e05f7
SHA256

44c333534980e561f853b50225f51d4ba3faa6bd90f424f38986b52d4657cdd8
SHA512

6a2bdfb4ac75a3ab9a27a2c3398d2b63f84f2e59b3ef9bc8a9e47496b39228925ea6bb8415f918e363ecc4f10a3b48170418d9b228e49bc69ac19fe7537acb2a
SSDEEP

768:b7o/2n1TCraU6GD1a4Xt9bRU6zA6o36mI1k:bc/y2lLRU6zA6qp

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-05-03_986857b6e5dd207bdae00aa89bc35c9c_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-03_986857b6e5dd207bdae00aa89bc35c9c_cryptolocker.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-03_986857b6e5dd207bdae00aa89bc35c9c_cryptolocker
- Size
  
  37KB
- MD5
  
  986857b6e5dd207bdae00aa89bc35c9c
- SHA1
  
  5abc792fa112537b55a94748df0b5774da8e05f7
- SHA256
  
  44c333534980e561f853b50225f51d4ba3faa6bd90f424f38986b52d4657cdd8
- SHA512
  
  6a2bdfb4ac75a3ab9a27a2c3398d2b63f84f2e59b3ef9bc8a9e47496b39228925ea6bb8415f918e363ecc4f10a3b48170418d9b228e49bc69ac19fe7537acb2a
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4Xt9bRU6zA6o36mI1k:bc/y2lLRU6zA6qp
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy