Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-28_591a3c464577563901a82e9e36d4c975_cryptolocker
-
Size
81KB
-
Sample
240128-d18gjscaej
-
MD5
591a3c464577563901a82e9e36d4c975
-
SHA1
4aab4428d7c5bb58d80583f548e4cfb900421d25
-
SHA256
cdabc84f446ffa31595537c61a9ea2848d864f44a00cc410f6d9920bcdc91d5b
-
SHA512
427e70564cebd1cd71c14e3c4fcb4abf9faa3ae6a5dc5114565e1e1823604e879ef8f740bba23d006a7e866fc0df4d86330675707a7342ddb0add16d4f0a722b
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPFh6:V6QFElP6n+gMQMOtEvwDpjyaLccVNlV6
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-28_591a3c464577563901a82e9e36d4c975_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-28_591a3c464577563901a82e9e36d4c975_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-01-28_591a3c464577563901a82e9e36d4c975_cryptolocker
-
Size
81KB
-
MD5
591a3c464577563901a82e9e36d4c975
-
SHA1
4aab4428d7c5bb58d80583f548e4cfb900421d25
-
SHA256
cdabc84f446ffa31595537c61a9ea2848d864f44a00cc410f6d9920bcdc91d5b
-
SHA512
427e70564cebd1cd71c14e3c4fcb4abf9faa3ae6a5dc5114565e1e1823604e879ef8f740bba23d006a7e866fc0df4d86330675707a7342ddb0add16d4f0a722b
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPFh6:V6QFElP6n+gMQMOtEvwDpjyaLccVNlV6
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-