Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-16...er.exe

windows7-x64

9

2024-05-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-16_2d06602a834fed819315f41956455b60_cryptolocker

  • Size

    39KB

  • Sample

    240516-3t3edsfc29

  • MD5

    2d06602a834fed819315f41956455b60

  • SHA1

    bbecefa78c127ea76f6d703ab33daae3d594908c

  • SHA256

    0e5bbe4ecea2c352bdc338066cdf4cf58ed8a00b5ab91512836f6b00d9210377

  • SHA512

    bd4d5481a9b68ac28cd0521c756c71feb53338d53382e84091482f9e10aadded1461b1dbfb76ec107d386b02ae0d72019b13a1c20a573229d8afbcf12f8f2923

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaVI:qDdFJy3QMOtEvwDpjjWMl7Td2

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-16_2d06602a834fed819315f41956455b60_cryptolocker

    • Size

      39KB

    • MD5

      2d06602a834fed819315f41956455b60

    • SHA1

      bbecefa78c127ea76f6d703ab33daae3d594908c

    • SHA256

      0e5bbe4ecea2c352bdc338066cdf4cf58ed8a00b5ab91512836f6b00d9210377

    • SHA512

      bd4d5481a9b68ac28cd0521c756c71feb53338d53382e84091482f9e10aadded1461b1dbfb76ec107d386b02ae0d72019b13a1c20a573229d8afbcf12f8f2923

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaVI:qDdFJy3QMOtEvwDpjjWMl7Td2

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks