Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-29...er.exe

windows7-x64

9

2024-05-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-29_70bf58577fee487a9e8b4a585adc799b_cryptolocker

  • Size

    39KB

  • Sample

    240529-fhc9ssbh85

  • MD5

    70bf58577fee487a9e8b4a585adc799b

  • SHA1

    e12eb418aae174314aa5954de64d2b1887854afe

  • SHA256

    835962b49b56b8d83e08f3ef1eac22ecc2894e089b71c6c547b5f12f3feccbb4

  • SHA512

    b6e08ba0ae85d7ba7e3f616693faacca048643bbdb40491595f4ffa0c766596b249f227f2727828fd92b76b99c5491f1a1a2fa548678bf4983a299635f7b4656

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY/s:qDdFJy3QMOtEvwDpjjWMl7T5

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-05-29_70bf58577fee487a9e8b4a585adc799b_cryptolocker

    • Size

      39KB

    • MD5

      70bf58577fee487a9e8b4a585adc799b

    • SHA1

      e12eb418aae174314aa5954de64d2b1887854afe

    • SHA256

      835962b49b56b8d83e08f3ef1eac22ecc2894e089b71c6c547b5f12f3feccbb4

    • SHA512

      b6e08ba0ae85d7ba7e3f616693faacca048643bbdb40491595f4ffa0c766596b249f227f2727828fd92b76b99c5491f1a1a2fa548678bf4983a299635f7b4656

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY/s:qDdFJy3QMOtEvwDpjjWMl7T5

    Score
    9/10
    upx

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks