Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker
-
Size
50KB
-
Sample
240127-zc188addfn
-
MD5
f495f23742f5a1c03b8545c2259e3bd4
-
SHA1
1eeae450f0fe74cea3572b1cbb754929d61c7669
-
SHA256
efab791d63e257b2356ae87e3aa982b2aa9f13ffa664c777918f57a06f67432d
-
SHA512
0d02804149d29657a93eb6377645c27209ef37825f7c0063f5f53a13aeec09c6e7b10f802a8a8c7f943e855fb48a9e0b67d3971be8b4fe667db13e237ebd4286
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRsI:79mqyNhQMOtEvwDpjBxe8TpXRD
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-01-27_f495f23742f5a1c03b8545c2259e3bd4_cryptolocker
-
Size
50KB
-
MD5
f495f23742f5a1c03b8545c2259e3bd4
-
SHA1
1eeae450f0fe74cea3572b1cbb754929d61c7669
-
SHA256
efab791d63e257b2356ae87e3aa982b2aa9f13ffa664c777918f57a06f67432d
-
SHA512
0d02804149d29657a93eb6377645c27209ef37825f7c0063f5f53a13aeec09c6e7b10f802a8a8c7f943e855fb48a9e0b67d3971be8b4fe667db13e237ebd4286
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRsI:79mqyNhQMOtEvwDpjBxe8TpXRD
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-