Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker
-
Size
35KB
-
Sample
240217-zjy3fabc48
-
MD5
cd80cd90ea5ec2e8bc19304ef9e90738
-
SHA1
c4396ab3c30429b417e9fa7524ed3cf5bd208b13
-
SHA256
57791ed234d7b3e1e39ffa9408c775018d750d2b0db45fc688b21710498ba176
-
SHA512
8f41ba70c8d128cd91ddd36905e296dc62de1e6c6d7cc0f2f81b51e2b64d4eb0be758bd85b39b7bdb0ecbc42cb9df19252f8c2f8fd2e5968d28f08fe7441bca1
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkLK:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLK
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-17_cd80cd90ea5ec2e8bc19304ef9e90738_cryptolocker
-
Size
35KB
-
MD5
cd80cd90ea5ec2e8bc19304ef9e90738
-
SHA1
c4396ab3c30429b417e9fa7524ed3cf5bd208b13
-
SHA256
57791ed234d7b3e1e39ffa9408c775018d750d2b0db45fc688b21710498ba176
-
SHA512
8f41ba70c8d128cd91ddd36905e296dc62de1e6c6d7cc0f2f81b51e2b64d4eb0be758bd85b39b7bdb0ecbc42cb9df19252f8c2f8fd2e5968d28f08fe7441bca1
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkLK:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLK
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-