c4bf1f3e07b7a88b828b2a5e6dc2607df81426814698c3fd1b8578ae06ec90ad | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-05-31...er.exe

windows7-x64

9

2024-05-31...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-31_dcca372632b971aa18ab6086f57f12c1_cryptolocker
Size

63KB
Sample

240531-zpvl7sdh52
MD5

dcca372632b971aa18ab6086f57f12c1
SHA1

e9a75dd10328322b30eb0894ced189c23c750f9c
SHA256

c4bf1f3e07b7a88b828b2a5e6dc2607df81426814698c3fd1b8578ae06ec90ad
SHA512

4574100e39f2c5b5b80f8a19b1a99ebe664e43b0a7926af13887669e82fdf019e2d54030cddec560ebb2a4aeb03a61dc5b2bfcafbec51c9f0851b6cd0ea34334
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnx9:btng54SMLr+/AO/kIhfoKMHdaL

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-05-31_dcca372632b971aa18ab6086f57f12c1_cryptolocker.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-31_dcca372632b971aa18ab6086f57f12c1_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-31_dcca372632b971aa18ab6086f57f12c1_cryptolocker
- Size
  
  63KB
- MD5
  
  dcca372632b971aa18ab6086f57f12c1
- SHA1
  
  e9a75dd10328322b30eb0894ced189c23c750f9c
- SHA256
  
  c4bf1f3e07b7a88b828b2a5e6dc2607df81426814698c3fd1b8578ae06ec90ad
- SHA512
  
  4574100e39f2c5b5b80f8a19b1a99ebe664e43b0a7926af13887669e82fdf019e2d54030cddec560ebb2a4aeb03a61dc5b2bfcafbec51c9f0851b6cd0ea34334
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnx9:btng54SMLr+/AO/kIhfoKMHdaL
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy