Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-18_bc4d06bd8c24eab16ccee501cc9eb060_cryptolocker
-
Size
41KB
-
Sample
240218-pxvl3aaf38
-
MD5
bc4d06bd8c24eab16ccee501cc9eb060
-
SHA1
b0b001628b1be8b9a7550454a8237655a27b58e9
-
SHA256
2c810f2b38c0cbb78ea41dabf5909f19aeb7598c2d3d791b4812d1926b6aaace
-
SHA512
f097d9631f368172e745ef5573932c2ed72a4174d889a856cc3d328f9e0eae83b4d9e05c8ff715d636d7e614af87a0a85b63bba65c33b35221e064541daa76d9
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETked3k:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+Y
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-18_bc4d06bd8c24eab16ccee501cc9eb060_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-18_bc4d06bd8c24eab16ccee501cc9eb060_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-18_bc4d06bd8c24eab16ccee501cc9eb060_cryptolocker
-
Size
41KB
-
MD5
bc4d06bd8c24eab16ccee501cc9eb060
-
SHA1
b0b001628b1be8b9a7550454a8237655a27b58e9
-
SHA256
2c810f2b38c0cbb78ea41dabf5909f19aeb7598c2d3d791b4812d1926b6aaace
-
SHA512
f097d9631f368172e745ef5573932c2ed72a4174d889a856cc3d328f9e0eae83b4d9e05c8ff715d636d7e614af87a0a85b63bba65c33b35221e064541daa76d9
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETked3k:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+Y
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-