Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-18_a116968575ff1b9e1db2d20103ac4639_cryptolocker
-
Size
74KB
-
Sample
240118-25vcgsfda8
-
MD5
a116968575ff1b9e1db2d20103ac4639
-
SHA1
5df54a5475df9adaac889eca19c4b08229c69700
-
SHA256
d31f4ae972881e90bfd4ac614e7710fc4387643df0107b076a74fec40d7525fb
-
SHA512
01498556e41e30d9107692cd0a7509ebe1e8ea8ffca37616e9835175ec7ccf6ec192f343520d081cc4cb95609d637e25b8516541396674df05183e001d2177a1
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KFS:ZVxkGOtEvwDpjcaL
Malware Config
Targets
-
-
Target
2024-01-18_a116968575ff1b9e1db2d20103ac4639_cryptolocker
-
Size
74KB
-
MD5
a116968575ff1b9e1db2d20103ac4639
-
SHA1
5df54a5475df9adaac889eca19c4b08229c69700
-
SHA256
d31f4ae972881e90bfd4ac614e7710fc4387643df0107b076a74fec40d7525fb
-
SHA512
01498556e41e30d9107692cd0a7509ebe1e8ea8ffca37616e9835175ec7ccf6ec192f343520d081cc4cb95609d637e25b8516541396674df05183e001d2177a1
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KFS:ZVxkGOtEvwDpjcaL
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-