a2bc944e3818e500a1d4fcbd213ca7cd6193f04448e6ced538fa344ee0a3edbe | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-06-03...er.exe

windows7-x64

9

2024-06-03...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-06-03_48638d1b7b3340b8e305a1f5a3ca5d3a_cryptolocker
Size

78KB
Sample

240603-d6q5fsbc38
MD5

48638d1b7b3340b8e305a1f5a3ca5d3a
SHA1

b7d780fc2eb8eb40980f925952633e9ddb62acf3
SHA256

a2bc944e3818e500a1d4fcbd213ca7cd6193f04448e6ced538fa344ee0a3edbe
SHA512

86b45135e28bb9c8f90250d3b5368b6808b6ac22aacd8cf1846ec9b9a738881c9d1f9c8daee23550c91875c5938e0150a38d4295571854ca1a27ef1d65b476e6
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufXi:vCjsIOtEvwDpj5H9YvQd2u

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-06-03_48638d1b7b3340b8e305a1f5a3ca5d3a_cryptolocker.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-03_48638d1b7b3340b8e305a1f5a3ca5d3a_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-03_48638d1b7b3340b8e305a1f5a3ca5d3a_cryptolocker
- Size
  
  78KB
- MD5
  
  48638d1b7b3340b8e305a1f5a3ca5d3a
- SHA1
  
  b7d780fc2eb8eb40980f925952633e9ddb62acf3
- SHA256
  
  a2bc944e3818e500a1d4fcbd213ca7cd6193f04448e6ced538fa344ee0a3edbe
- SHA512
  
  86b45135e28bb9c8f90250d3b5368b6808b6ac22aacd8cf1846ec9b9a738881c9d1f9c8daee23550c91875c5938e0150a38d4295571854ca1a27ef1d65b476e6
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufXi:vCjsIOtEvwDpj5H9YvQd2u
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy