Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker
-
Size
41KB
-
Sample
240219-w3qzdsae3v
-
MD5
492f0387ddae085d23b3cd760ce100d3
-
SHA1
792664d071bd8c3db35b0cedc221f1e75f4d8373
-
SHA256
e64ebd57fdbe887c43dace7bf1deedc028d7516f5515e0bcffdd3caaf997010c
-
SHA512
3dc7858a432e84b25eb4e2f384d5c46ce279dc086c30147b6910b029d585e9d2eaef8036530ad9d0813cb5eceb6f134295baa98db6e8a6f88dde5709b6686563
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6n8VC:6j+1NMOtEvwDpjrR88
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-19_492f0387ddae085d23b3cd760ce100d3_cryptolocker
-
Size
41KB
-
MD5
492f0387ddae085d23b3cd760ce100d3
-
SHA1
792664d071bd8c3db35b0cedc221f1e75f4d8373
-
SHA256
e64ebd57fdbe887c43dace7bf1deedc028d7516f5515e0bcffdd3caaf997010c
-
SHA512
3dc7858a432e84b25eb4e2f384d5c46ce279dc086c30147b6910b029d585e9d2eaef8036530ad9d0813cb5eceb6f134295baa98db6e8a6f88dde5709b6686563
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6n8VC:6j+1NMOtEvwDpjrR88
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-