Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-05-29...er.exe

windows7-x64

9

2024-05-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-29_97a8c9bcaa8c15c6df8cbecca20ea3cd_cryptolocker

  • Size

    68KB

  • Sample

    240529-x7bwpsfa9y

  • MD5

    97a8c9bcaa8c15c6df8cbecca20ea3cd

  • SHA1

    eb65fb21f641573023448237dfe0ba54e12ef8b4

  • SHA256

    2c0c168eae9c7250b3a0e070f5e5e7cf993949857e5557bf88001e93d9eaf955

  • SHA512

    d9f19134a84f93b16948aac9b23d3e09b8fc7b66f558b192db5d4ee37bf81ad79815cfa2360a4004bc66834ba59d7384762fbf12e6d9f59b4c59cd1010a4deb6

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyePu7:TCjsIOtEvwDpj5HE/OUHnSMYy

Score
10/10

Malware Config

Targets

    • Target

      2024-05-29_97a8c9bcaa8c15c6df8cbecca20ea3cd_cryptolocker

    • Size

      68KB

    • MD5

      97a8c9bcaa8c15c6df8cbecca20ea3cd

    • SHA1

      eb65fb21f641573023448237dfe0ba54e12ef8b4

    • SHA256

      2c0c168eae9c7250b3a0e070f5e5e7cf993949857e5557bf88001e93d9eaf955

    • SHA512

      d9f19134a84f93b16948aac9b23d3e09b8fc7b66f558b192db5d4ee37bf81ad79815cfa2360a4004bc66834ba59d7384762fbf12e6d9f59b4c59cd1010a4deb6

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyePu7:TCjsIOtEvwDpj5HE/OUHnSMYy

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks