Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-23...er.exe

windows7-x64

9

2024-05-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker

  • Size

    85KB

  • Sample

    240523-e4wgtsdh86

  • MD5

    844d240fae1e85902588ac0d8e6069f1

  • SHA1

    b998a7b487eee4a7eabe0ba96ec3abe739e4460a

  • SHA256

    a8ccf574b0357823dc2b9be7ed9d9fc216619cd6c126d4ee9106b6de60cfefbf

  • SHA512

    8549c55dfcfe2a4f2e85118e2fad7f32a4894d4b23670e891865669a6b3d375687c76c5a0ef9deaf26202624ddaf04224b242202c71f1174b0cab0d41a30b76c

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+v:TCjsIOtEvwDpj5HE/OUHnSM5

Score
10/10

Malware Config

Targets

    • Target

      2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker

    • Size

      85KB

    • MD5

      844d240fae1e85902588ac0d8e6069f1

    • SHA1

      b998a7b487eee4a7eabe0ba96ec3abe739e4460a

    • SHA256

      a8ccf574b0357823dc2b9be7ed9d9fc216619cd6c126d4ee9106b6de60cfefbf

    • SHA512

      8549c55dfcfe2a4f2e85118e2fad7f32a4894d4b23670e891865669a6b3d375687c76c5a0ef9deaf26202624ddaf04224b242202c71f1174b0cab0d41a30b76c

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+v:TCjsIOtEvwDpj5HE/OUHnSM5

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks