Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-13...er.exe

windows7-x64

9

2024-05-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-13_5759e8b897c50e7f32a6cacc313e5ae9_cryptolocker

  • Size

    67KB

  • Sample

    240513-tynmcsdg9w

  • MD5

    5759e8b897c50e7f32a6cacc313e5ae9

  • SHA1

    b8111c2355a32376cd30c1bda3511a4d4ed1f42a

  • SHA256

    4399d76dbb9ae66e19a8c97f6ccf324f66b41356d83c8d3e825fddd1eb9b39ba

  • SHA512

    d6b8dd69943b25909eaaef2b1caed61fd57cf6c4de4720f9245da7f6ae4dc25112bfcbe11a404d01ed44f31aaec050bf82c0a45e079597b2225577538444ef0b

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIh:6j+1NMOtEvwDpjr8ox8UDEpN/jE

Score
10/10

Malware Config

Targets

    • Target

      2024-05-13_5759e8b897c50e7f32a6cacc313e5ae9_cryptolocker

    • Size

      67KB

    • MD5

      5759e8b897c50e7f32a6cacc313e5ae9

    • SHA1

      b8111c2355a32376cd30c1bda3511a4d4ed1f42a

    • SHA256

      4399d76dbb9ae66e19a8c97f6ccf324f66b41356d83c8d3e825fddd1eb9b39ba

    • SHA512

      d6b8dd69943b25909eaaef2b1caed61fd57cf6c4de4720f9245da7f6ae4dc25112bfcbe11a404d01ed44f31aaec050bf82c0a45e079597b2225577538444ef0b

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIh:6j+1NMOtEvwDpjr8ox8UDEpN/jE

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks