Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-14...er.exe

windows7-x64

9

2024-05-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker

  • Size

    70KB

  • Sample

    240514-ez17hsbb77

  • MD5

    0224ff12e526a1d75b04141e875c9474

  • SHA1

    7d032b1908a6c7a4da3b0572c7bfc9de41448351

  • SHA256

    279ecf6e6c13fc17bf0b35020df942841c6e522a785daf29f00b177d393089ee

  • SHA512

    6ab436a9ae27a604e36f01eb500dcebc7fba3648600c2b35eec6a35535e27521e94d1fc7596fd44d45af5d6c90f1f861c18fe0608ff0255edaa03526c2d42cd1

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RL:vj+jsMQMOtEvwDpj5HZYTjipvF24j

Score
10/10

Malware Config

Targets

    • Target

      2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker

    • Size

      70KB

    • MD5

      0224ff12e526a1d75b04141e875c9474

    • SHA1

      7d032b1908a6c7a4da3b0572c7bfc9de41448351

    • SHA256

      279ecf6e6c13fc17bf0b35020df942841c6e522a785daf29f00b177d393089ee

    • SHA512

      6ab436a9ae27a604e36f01eb500dcebc7fba3648600c2b35eec6a35535e27521e94d1fc7596fd44d45af5d6c90f1f861c18fe0608ff0255edaa03526c2d42cd1

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RL:vj+jsMQMOtEvwDpj5HZYTjipvF24j

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks