Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-22_f5e4c97dea465e054e8cbb939fe96338_cryptolocker
-
Size
37KB
-
Sample
240222-bdwhcshe9s
-
MD5
f5e4c97dea465e054e8cbb939fe96338
-
SHA1
2142f20422b935d6136d19b2d454526a7bc77fe5
-
SHA256
59c2d5f2b03521dd5ca546a733fc94cb1ba26468a21a9948b8b03d9749182a1d
-
SHA512
56c87c60569915bf7db9d15952d4c38fe9bec0fb2406b07b7bbc5808b288cce7f4a291546488d5f94aa193e63801ebed18508e589bb3d43910f75ec154a6dfe7
-
SSDEEP
384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfz+:bgX4zYcgTEu6QOaryfjqDDw3sCu5mz+
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-22_f5e4c97dea465e054e8cbb939fe96338_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-22_f5e4c97dea465e054e8cbb939fe96338_cryptolocker.exe
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
2024-02-22_f5e4c97dea465e054e8cbb939fe96338_cryptolocker
-
Size
37KB
-
MD5
f5e4c97dea465e054e8cbb939fe96338
-
SHA1
2142f20422b935d6136d19b2d454526a7bc77fe5
-
SHA256
59c2d5f2b03521dd5ca546a733fc94cb1ba26468a21a9948b8b03d9749182a1d
-
SHA512
56c87c60569915bf7db9d15952d4c38fe9bec0fb2406b07b7bbc5808b288cce7f4a291546488d5f94aa193e63801ebed18508e589bb3d43910f75ec154a6dfe7
-
SSDEEP
384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZnfz+:bgX4zYcgTEu6QOaryfjqDDw3sCu5mz+
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-