Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-22_3759949d3595f56df90230bb6ef3e095_cryptolocker
-
Size
105KB
-
Sample
240122-svlg6aacd4
-
MD5
3759949d3595f56df90230bb6ef3e095
-
SHA1
6c0cf34f7a2bcaefdb1b6c90ebd9ab639f244d5f
-
SHA256
af5b958cc9f7f93499552fe545644264a44001ee54b21bfb203a5764240df441
-
SHA512
60cb76885ca4afbb980397a3def04a6833b1771b679473e7b15357ac6f01b003670dc0ddfc5ca82bd3ec04f86cea579617dd284b93c8d2ed6bb5e3b6793368cd
-
SSDEEP
1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsalRn5iF1j6Gksk:1nK6a+qdOOtEvwDpjk
Behavioral task
behavioral1
Sample
2024-01-22_3759949d3595f56df90230bb6ef3e095_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-22_3759949d3595f56df90230bb6ef3e095_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-01-22_3759949d3595f56df90230bb6ef3e095_cryptolocker
-
Size
105KB
-
MD5
3759949d3595f56df90230bb6ef3e095
-
SHA1
6c0cf34f7a2bcaefdb1b6c90ebd9ab639f244d5f
-
SHA256
af5b958cc9f7f93499552fe545644264a44001ee54b21bfb203a5764240df441
-
SHA512
60cb76885ca4afbb980397a3def04a6833b1771b679473e7b15357ac6f01b003670dc0ddfc5ca82bd3ec04f86cea579617dd284b93c8d2ed6bb5e3b6793368cd
-
SSDEEP
1536:P8mnK6QFElP6n+gymddpMOtEvwDpjIHsalRn5iF1j6Gksk:1nK6a+qdOOtEvwDpjk
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-