Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-14_dd1373d512af977e0cf9547b3f29cecd_cryptolocker
-
Size
40KB
-
Sample
240214-h2t3rscd7z
-
MD5
dd1373d512af977e0cf9547b3f29cecd
-
SHA1
6a424f57982dad36b7f931b87a5d8e2b8dd0835d
-
SHA256
d6bf637d1c5a3b535f9e2e086b507e13b1fdbd8444e50198662a3b5f4c3fd18d
-
SHA512
10a33d95216b07cda527f7e047142eca361792aa9bc63c3efc2c6c201df00acc77a62e0c2e041d1f1491af624d5c15395b46be87a5646f8d7b46db74e0fb5db3
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqJzJ:bxNrC7kYo1Fxf3s05rwxbFSt
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-14_dd1373d512af977e0cf9547b3f29cecd_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-14_dd1373d512af977e0cf9547b3f29cecd_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-14_dd1373d512af977e0cf9547b3f29cecd_cryptolocker
-
Size
40KB
-
MD5
dd1373d512af977e0cf9547b3f29cecd
-
SHA1
6a424f57982dad36b7f931b87a5d8e2b8dd0835d
-
SHA256
d6bf637d1c5a3b535f9e2e086b507e13b1fdbd8444e50198662a3b5f4c3fd18d
-
SHA512
10a33d95216b07cda527f7e047142eca361792aa9bc63c3efc2c6c201df00acc77a62e0c2e041d1f1491af624d5c15395b46be87a5646f8d7b46db74e0fb5db3
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqJzJ:bxNrC7kYo1Fxf3s05rwxbFSt
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-