Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-24...er.exe

windows7-x64

9

2024-05-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-24_ab2b725deca89b800db06c3c84694678_cryptolocker

  • Size

    39KB

  • Sample

    240524-ehv9yacc58

  • MD5

    ab2b725deca89b800db06c3c84694678

  • SHA1

    0186916a52138d3e28b7d814c8f70744dd5428cb

  • SHA256

    9f8d18eea280bf44145d76ea20bb2f610f3c89655eff2b24375cc2dec346d1e1

  • SHA512

    3fe0c7df57a6778886fcc35532aaa4288f93a0574409a30bf0fcda0c52601725b79b7ba8dc3893b05bac38c6d14f52c226d5393880f03af1cd76291c5e4464eb

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8L:btB9g/WItCSsAGjX7e9N0hunRvGIV8L

Score
10/10

Malware Config

Targets

    • Target

      2024-05-24_ab2b725deca89b800db06c3c84694678_cryptolocker

    • Size

      39KB

    • MD5

      ab2b725deca89b800db06c3c84694678

    • SHA1

      0186916a52138d3e28b7d814c8f70744dd5428cb

    • SHA256

      9f8d18eea280bf44145d76ea20bb2f610f3c89655eff2b24375cc2dec346d1e1

    • SHA512

      3fe0c7df57a6778886fcc35532aaa4288f93a0574409a30bf0fcda0c52601725b79b7ba8dc3893b05bac38c6d14f52c226d5393880f03af1cd76291c5e4464eb

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8L:btB9g/WItCSsAGjX7e9N0hunRvGIV8L

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks