Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-21_942e05ca457134297db8e31fc1140874_cryptolocker
-
Size
50KB
-
Sample
240221-nr3j2see9x
-
MD5
942e05ca457134297db8e31fc1140874
-
SHA1
33800b7ae658ca75c4afc63827afbc6f53ac2414
-
SHA256
58d3994ee7bab73f97993cee3b2e05862c36df7045f26003db465c0692b93b88
-
SHA512
a2dc5e14b02a46410d6264e1e7c4370385d02b39622007932ba59e394f78874562c0eeaaee6a58edef561d7782ce3fdd02b244e51ab2f07f2bdf8420f0f51619
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlca96Xg:X6QFElP6n+gJBMOtEvwDpjBtExmlFv
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-21_942e05ca457134297db8e31fc1140874_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-21_942e05ca457134297db8e31fc1140874_cryptolocker.exe
Resource
win10v2004-20240220-en
Malware Config
Targets
-
-
Target
2024-02-21_942e05ca457134297db8e31fc1140874_cryptolocker
-
Size
50KB
-
MD5
942e05ca457134297db8e31fc1140874
-
SHA1
33800b7ae658ca75c4afc63827afbc6f53ac2414
-
SHA256
58d3994ee7bab73f97993cee3b2e05862c36df7045f26003db465c0692b93b88
-
SHA512
a2dc5e14b02a46410d6264e1e7c4370385d02b39622007932ba59e394f78874562c0eeaaee6a58edef561d7782ce3fdd02b244e51ab2f07f2bdf8420f0f51619
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlca96Xg:X6QFElP6n+gJBMOtEvwDpjBtExmlFv
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-