Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker
-
Size
71KB
-
Sample
240220-bcqkqaha25
-
MD5
f7c37f8878239741d4243f50479158cc
-
SHA1
8d3b637a19688ee1ca246385a10d072a12feb179
-
SHA256
a8f4150007d3d933b3fcade9ec948c456a4719d2c6d7110e18aaf6346e174317
-
SHA512
98ca27ac2c5a4cbb97fe2a16170f9dc98613680d5803b609227fe5c32c33678f22f45d38e178065603c7f7d1bf300cf8a729ebeea579fb12d595bf5b1be14093
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1eSi:X6a+SOtEvwDpjBZYvQd2c
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-20_f7c37f8878239741d4243f50479158cc_cryptolocker
-
Size
71KB
-
MD5
f7c37f8878239741d4243f50479158cc
-
SHA1
8d3b637a19688ee1ca246385a10d072a12feb179
-
SHA256
a8f4150007d3d933b3fcade9ec948c456a4719d2c6d7110e18aaf6346e174317
-
SHA512
98ca27ac2c5a4cbb97fe2a16170f9dc98613680d5803b609227fe5c32c33678f22f45d38e178065603c7f7d1bf300cf8a729ebeea579fb12d595bf5b1be14093
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1eSi:X6a+SOtEvwDpjBZYvQd2c
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-