Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-24_8365e2b7837a9833d4a47063ed7da14f_cryptolocker
-
Size
123KB
-
Sample
240124-ke4psseadp
-
MD5
8365e2b7837a9833d4a47063ed7da14f
-
SHA1
cbe5ed303145eb0182e25b423dfc549dc5438e20
-
SHA256
bae430335c05a03a20aa78e174b1655082ee2e269b3b87b124c6e6dc8c9f92ba
-
SHA512
5e83ff18ec41ff2b6042a167f29e6a4777af0c3c15b58837d4e3dcd6de7c54b4e47b633e27ec5748fee1c544ccd1a0b3a559b10fab8f57f961b80f9980e0e846
-
SSDEEP
1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxE4qH:vCA9OtEvwDpjF
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-24_8365e2b7837a9833d4a47063ed7da14f_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-24_8365e2b7837a9833d4a47063ed7da14f_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-01-24_8365e2b7837a9833d4a47063ed7da14f_cryptolocker
-
Size
123KB
-
MD5
8365e2b7837a9833d4a47063ed7da14f
-
SHA1
cbe5ed303145eb0182e25b423dfc549dc5438e20
-
SHA256
bae430335c05a03a20aa78e174b1655082ee2e269b3b87b124c6e6dc8c9f92ba
-
SHA512
5e83ff18ec41ff2b6042a167f29e6a4777af0c3c15b58837d4e3dcd6de7c54b4e47b633e27ec5748fee1c544ccd1a0b3a559b10fab8f57f961b80f9980e0e846
-
SSDEEP
1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxE4qH:vCA9OtEvwDpjF
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-