Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-18_c18996d56c54b7785191e10dc6e18d99_cryptolocker
-
Size
54KB
-
Sample
240218-l3ax3ahb88
-
MD5
c18996d56c54b7785191e10dc6e18d99
-
SHA1
d76f5aaa5d3ea9c5f7a8c5adee4ad9ff83b84b7c
-
SHA256
01c13bedb382339529f475d4ec5f2b38293d43c273d57a5f14587414c9583063
-
SHA512
8e0f038709b674f5cd560674c20a09e2b4b7bf41433b1e2f100996ee9d3857b485c15e471e285742b40a04da9f6fc272760972fc4ac22d60c1fc4a0e7eec8a37
-
SSDEEP
1536:X6QFElP6n+gJBMOtEvwDpjBtE1yILJ0wy:X6a+BOtEvwDpjBOG
Malware Config
Targets
-
-
Target
2024-02-18_c18996d56c54b7785191e10dc6e18d99_cryptolocker
-
Size
54KB
-
MD5
c18996d56c54b7785191e10dc6e18d99
-
SHA1
d76f5aaa5d3ea9c5f7a8c5adee4ad9ff83b84b7c
-
SHA256
01c13bedb382339529f475d4ec5f2b38293d43c273d57a5f14587414c9583063
-
SHA512
8e0f038709b674f5cd560674c20a09e2b4b7bf41433b1e2f100996ee9d3857b485c15e471e285742b40a04da9f6fc272760972fc4ac22d60c1fc4a0e7eec8a37
-
SSDEEP
1536:X6QFElP6n+gJBMOtEvwDpjBtE1yILJ0wy:X6a+BOtEvwDpjBOG
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-