Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker
-
Size
43KB
-
Sample
240204-hcqdaadhgq
-
MD5
9352f1a25b7eb11b56edd67379a438fd
-
SHA1
e70ded9db8057f2e9127574429b012263a7bd6f9
-
SHA256
590f7c2a93ce8628abf9013dbf48324da51370626480dfc2f4dcc67e7055365d
-
SHA512
b5ac210c8557868b59bcec36cf13aa889fa350f69c1ee69225f6497e50ecc3d963b985fd8a3d8963c73ac116876f591c2d73a5ef93e775ea27f55765def4a609
-
SSDEEP
384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLV:79inqyNR/QtOOtEvwDpjBKccJVODvy34
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-04_9352f1a25b7eb11b56edd67379a438fd_cryptolocker
-
Size
43KB
-
MD5
9352f1a25b7eb11b56edd67379a438fd
-
SHA1
e70ded9db8057f2e9127574429b012263a7bd6f9
-
SHA256
590f7c2a93ce8628abf9013dbf48324da51370626480dfc2f4dcc67e7055365d
-
SHA512
b5ac210c8557868b59bcec36cf13aa889fa350f69c1ee69225f6497e50ecc3d963b985fd8a3d8963c73ac116876f591c2d73a5ef93e775ea27f55765def4a609
-
SSDEEP
384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLV:79inqyNR/QtOOtEvwDpjBKccJVODvy34
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-