Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

3bd5b28160...52.exe

windows7-x64

9

3bd5b28160...52.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3bd5b28160eb1684561930c023d5b3b2893cd828ce9411df09e2921f67530e52

  • Size

    43KB

  • Sample

    240625-y3e81atbnk

  • MD5

    46655e35b9dc79e96ae4203779575e8b

  • SHA1

    c0ba6ba63849543da7fb5cfd90dc3843e00871ff

  • SHA256

    3bd5b28160eb1684561930c023d5b3b2893cd828ce9411df09e2921f67530e52

  • SHA512

    bab21612aaf8b89609b2a40a4c1a54e5af0c8927d48f9bb674014564eb6a3ef27e84031a73611ebea77e23f25359670edc5347b88e419bf10f3b3a50a8be788f

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Tw:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLw

Score
10/10

Malware Config

Targets

    • Target

      3bd5b28160eb1684561930c023d5b3b2893cd828ce9411df09e2921f67530e52

    • Size

      43KB

    • MD5

      46655e35b9dc79e96ae4203779575e8b

    • SHA1

      c0ba6ba63849543da7fb5cfd90dc3843e00871ff

    • SHA256

      3bd5b28160eb1684561930c023d5b3b2893cd828ce9411df09e2921f67530e52

    • SHA512

      bab21612aaf8b89609b2a40a4c1a54e5af0c8927d48f9bb674014564eb6a3ef27e84031a73611ebea77e23f25359670edc5347b88e419bf10f3b3a50a8be788f

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Tw:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLw

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks