Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker
-
Size
96KB
-
Sample
240212-me8d4aah7y
-
MD5
de2feced9f55413662e0866bd6a56ce4
-
SHA1
084c1235219650273fb76636f7085ba333077fe0
-
SHA256
76702925cdc22c05afd37201e1d5089ab33585120798098c56bd83e0ba36f39c
-
SHA512
70de1637c5278214bd2cfc6afe83a6780fa32b7b033f6872c88b4d9a102d86bad70d7e2b3547bcfafa98794350612db3fd5a9d3d8538c53bd6643aed126caf37
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3+:xj+VGMOtEvwDpjubwQEIiVmkf+
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_de2feced9f55413662e0866bd6a56ce4_cryptolocker
-
Size
96KB
-
MD5
de2feced9f55413662e0866bd6a56ce4
-
SHA1
084c1235219650273fb76636f7085ba333077fe0
-
SHA256
76702925cdc22c05afd37201e1d5089ab33585120798098c56bd83e0ba36f39c
-
SHA512
70de1637c5278214bd2cfc6afe83a6780fa32b7b033f6872c88b4d9a102d86bad70d7e2b3547bcfafa98794350612db3fd5a9d3d8538c53bd6643aed126caf37
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3+:xj+VGMOtEvwDpjubwQEIiVmkf+
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-