Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-20_e376209fd18b53ad962b922c684b34b6_cryptolocker
-
Size
94KB
-
Sample
240220-cddszshb8s
-
MD5
e376209fd18b53ad962b922c684b34b6
-
SHA1
024457ef713e273df8a663ebf2c7367780cc0379
-
SHA256
179897cd4c5b9e72f46fadc720f22958e20e8c0aedea454c9417b746b7b13e00
-
SHA512
b5df714ef763d301323d9cee7f5553bfe8e7da8c84d3a1589721a52ced5a43c28010edbc9f90fe9ea255e524cc9a04575eabcff1a65aed103e5eed90fcaab89b
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpA:V6a+pOtEvwDpjtzL
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-20_e376209fd18b53ad962b922c684b34b6_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-20_e376209fd18b53ad962b922c684b34b6_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-20_e376209fd18b53ad962b922c684b34b6_cryptolocker
-
Size
94KB
-
MD5
e376209fd18b53ad962b922c684b34b6
-
SHA1
024457ef713e273df8a663ebf2c7367780cc0379
-
SHA256
179897cd4c5b9e72f46fadc720f22958e20e8c0aedea454c9417b746b7b13e00
-
SHA512
b5df714ef763d301323d9cee7f5553bfe8e7da8c84d3a1589721a52ced5a43c28010edbc9f90fe9ea255e524cc9a04575eabcff1a65aed103e5eed90fcaab89b
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpA:V6a+pOtEvwDpjtzL
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-