Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-18_1c9e388849e3a62ec5d45e018a6ead86_cryptolocker
-
Size
62KB
-
Sample
240218-kcyqrsgc65
-
MD5
1c9e388849e3a62ec5d45e018a6ead86
-
SHA1
d0e6ba4b1aa06962ceca3c02015eed624e8990fb
-
SHA256
b14277c2cb7f04becfcffa947345ce187f7434369cf693e6d8534d9949371c38
-
SHA512
43af39b921cc21a0983f76dd8453710b9cf1b2df5353a98d0e82755a3bd9b8480c50f4df13b349a7a301da7e1f4a9e81badf3ebbf13983586b55b2df02c15bd1
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvda:TCjsIOtEvwDpj5HE/OUHnSMYX
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-18_1c9e388849e3a62ec5d45e018a6ead86_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-18_1c9e388849e3a62ec5d45e018a6ead86_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-18_1c9e388849e3a62ec5d45e018a6ead86_cryptolocker
-
Size
62KB
-
MD5
1c9e388849e3a62ec5d45e018a6ead86
-
SHA1
d0e6ba4b1aa06962ceca3c02015eed624e8990fb
-
SHA256
b14277c2cb7f04becfcffa947345ce187f7434369cf693e6d8534d9949371c38
-
SHA512
43af39b921cc21a0983f76dd8453710b9cf1b2df5353a98d0e82755a3bd9b8480c50f4df13b349a7a301da7e1f4a9e81badf3ebbf13983586b55b2df02c15bd1
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvda:TCjsIOtEvwDpj5HE/OUHnSMYX
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-