Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.2023-09-07_df250ce1a54d9cf4ed1baa8908ad4f09_cryptolocker_JC.exe
-
Size
40KB
-
Sample
231023-xpjtlaeg48
-
MD5
df250ce1a54d9cf4ed1baa8908ad4f09
-
SHA1
c0e861146e521df93f62058886b2a017c69825cb
-
SHA256
09f2c14bdb5b5a742320670c466466a19fa3dc95d9036d1ff7431879a9f9f5e7
-
SHA512
0a4da9648812c935f854244c242695eed0c7216058be1eadbb0330322ed052e58166b51bdc76c1981428b0e722ec62f45c287eeb596175f05dc109969e393081
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yb6:bgGYcA/53GAA6y37H
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.2023-09-07_df250ce1a54d9cf4ed1baa8908ad4f09_cryptolocker_JC.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
NEAS.2023-09-07_df250ce1a54d9cf4ed1baa8908ad4f09_cryptolocker_JC.exe
Resource
win10v2004-20231023-en
Malware Config
Targets
-
-
Target
NEAS.2023-09-07_df250ce1a54d9cf4ed1baa8908ad4f09_cryptolocker_JC.exe
-
Size
40KB
-
MD5
df250ce1a54d9cf4ed1baa8908ad4f09
-
SHA1
c0e861146e521df93f62058886b2a017c69825cb
-
SHA256
09f2c14bdb5b5a742320670c466466a19fa3dc95d9036d1ff7431879a9f9f5e7
-
SHA512
0a4da9648812c935f854244c242695eed0c7216058be1eadbb0330322ed052e58166b51bdc76c1981428b0e722ec62f45c287eeb596175f05dc109969e393081
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yb6:bgGYcA/53GAA6y37H
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-