Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-17_c14e69fccd55b53ddfbd3f52bd67858c_cryptolocker
-
Size
64KB
-
Sample
240217-mpws2sdg9y
-
MD5
c14e69fccd55b53ddfbd3f52bd67858c
-
SHA1
3d4da8b1aa07d2e7a896ffd827da5f3742f582f2
-
SHA256
5f62b25c4098edb748a7573d7040b16f5006d4b5a7ababb196eb0bfff9fb219f
-
SHA512
c65f23ec10fd5da1bcf196a79fba4146819b281e32358327353d3ee282a88bb44aa54b825f3de88bef1274767105f8b32908f79f19a01546c08afd7995f9500d
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbVN:ZVxkGOtEvwDpjcawX
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-17_c14e69fccd55b53ddfbd3f52bd67858c_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-02-17_c14e69fccd55b53ddfbd3f52bd67858c_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-17_c14e69fccd55b53ddfbd3f52bd67858c_cryptolocker
-
Size
64KB
-
MD5
c14e69fccd55b53ddfbd3f52bd67858c
-
SHA1
3d4da8b1aa07d2e7a896ffd827da5f3742f582f2
-
SHA256
5f62b25c4098edb748a7573d7040b16f5006d4b5a7ababb196eb0bfff9fb219f
-
SHA512
c65f23ec10fd5da1bcf196a79fba4146819b281e32358327353d3ee282a88bb44aa54b825f3de88bef1274767105f8b32908f79f19a01546c08afd7995f9500d
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbVN:ZVxkGOtEvwDpjcawX
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-