Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-06-09...er.exe

windows7-x64

9

2024-06-09...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-09_627e1fbec0f24b814f63eee5ee1f71ad_cryptolocker

  • Size

    49KB

  • Sample

    240609-jafxhafe7y

  • MD5

    627e1fbec0f24b814f63eee5ee1f71ad

  • SHA1

    fb112f3589417d4c2d8932f37ff933dbe91c047c

  • SHA256

    667c2e5182c05bfe7e8173b88c696003b89b808a3469f2c5b89ce6e02bd52461

  • SHA512

    01d6eb2220469b070ecb9a0a85f69c38af254d6aac7c5ff85e23766e2a5c526873ae19493ed575fe0f82908abb8f3ccc98e1369c432bf1973ec00309e22b1ddb

  • SSDEEP

    768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcAYZG:P6Q0ElP6G+gJQMOtEvwDpjB8WMlf/ZG

Score
10/10

Malware Config

Targets

    • Target

      2024-06-09_627e1fbec0f24b814f63eee5ee1f71ad_cryptolocker

    • Size

      49KB

    • MD5

      627e1fbec0f24b814f63eee5ee1f71ad

    • SHA1

      fb112f3589417d4c2d8932f37ff933dbe91c047c

    • SHA256

      667c2e5182c05bfe7e8173b88c696003b89b808a3469f2c5b89ce6e02bd52461

    • SHA512

      01d6eb2220469b070ecb9a0a85f69c38af254d6aac7c5ff85e23766e2a5c526873ae19493ed575fe0f82908abb8f3ccc98e1369c432bf1973ec00309e22b1ddb

    • SSDEEP

      768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcAYZG:P6Q0ElP6G+gJQMOtEvwDpjB8WMlf/ZG

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks