f6bc5f104e5da876e7bf5e6481da3176c7408b0c5f4d328114ae718b19dc58ae | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-05-04...er.exe

windows7-x64

9

2024-05-04...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-04_82a126a911af851bbccf5494583f51ce_cryptolocker
Size

31KB
Sample

240504-xt1b5sfg9x
MD5

82a126a911af851bbccf5494583f51ce
SHA1

5560fae6b646460539dd40d48984ab498127846f
SHA256

f6bc5f104e5da876e7bf5e6481da3176c7408b0c5f4d328114ae718b19dc58ae
SHA512

42d7bd3cee1a39e1570f7ab2032792b0b44601e93ffa9f4dae15930b1327e407ee43d7a36464adc63a145c5345f655f03fde7ea32b1c481046eccb4ea7094360
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvv:bG74zYcgT/Ekd0ryfjkv

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-05-04_82a126a911af851bbccf5494583f51ce_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-04_82a126a911af851bbccf5494583f51ce_cryptolocker.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-04_82a126a911af851bbccf5494583f51ce_cryptolocker
- Size
  
  31KB
- MD5
  
  82a126a911af851bbccf5494583f51ce
- SHA1
  
  5560fae6b646460539dd40d48984ab498127846f
- SHA256
  
  f6bc5f104e5da876e7bf5e6481da3176c7408b0c5f4d328114ae718b19dc58ae
- SHA512
  
  42d7bd3cee1a39e1570f7ab2032792b0b44601e93ffa9f4dae15930b1327e407ee43d7a36464adc63a145c5345f655f03fde7ea32b1c481046eccb4ea7094360
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvv:bG74zYcgT/Ekd0ryfjkv
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy