Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-07-01...er.exe

windows7-x64

9

2024-07-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-07-01_571f65c8da4286e09d5539a726c594a4_cryptolocker

  • Size

    50KB

  • Sample

    240701-plefpsvdmn

  • MD5

    571f65c8da4286e09d5539a726c594a4

  • SHA1

    6b70d1b6264e4a63e9781d7fcca9a798a0e72170

  • SHA256

    a10cd8aaa54eaa4e0f23a88effcb1a2116f443c05de2a1e120ef5c4d4d362c6a

  • SHA512

    2662f473c524145e698b023732a0e3fcea49541ebb3a5c5709e8de57efa24c840f02abe141fb5d6dfc4624216c2db519df6a01179ea2024e6174a91bc96f423c

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0n1L:vj+jsMQMOtEvwDpj5HczerLO04BML

Score
10/10

Malware Config

Targets

    • Target

      2024-07-01_571f65c8da4286e09d5539a726c594a4_cryptolocker

    • Size

      50KB

    • MD5

      571f65c8da4286e09d5539a726c594a4

    • SHA1

      6b70d1b6264e4a63e9781d7fcca9a798a0e72170

    • SHA256

      a10cd8aaa54eaa4e0f23a88effcb1a2116f443c05de2a1e120ef5c4d4d362c6a

    • SHA512

      2662f473c524145e698b023732a0e3fcea49541ebb3a5c5709e8de57efa24c840f02abe141fb5d6dfc4624216c2db519df6a01179ea2024e6174a91bc96f423c

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0n1L:vj+jsMQMOtEvwDpj5HczerLO04BML

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks