Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker
-
Size
63KB
-
Sample
240223-gf5rpscb6s
-
MD5
540dd32e364e7a5b56564d4274b4074e
-
SHA1
b2dbe0ee9cb885fe381071d7b6b8b1c4f903e6d3
-
SHA256
6f2cc9ca4294952ee5e520bb4744cc9973d7345f71b17b71a5459ae2cfb1add5
-
SHA512
545ec953f7e281c2ec9507e46024c679c367499d07f7fc0a88a90d7cbeda94c97c67804464c7288d533234d3fcfc30f0517e93079b89cfd288dda9c91c989531
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMHpaIq:TCjsIOtEvwDpj5HE/OUHnSMt
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker.exe
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
2024-02-23_540dd32e364e7a5b56564d4274b4074e_cryptolocker
-
Size
63KB
-
MD5
540dd32e364e7a5b56564d4274b4074e
-
SHA1
b2dbe0ee9cb885fe381071d7b6b8b1c4f903e6d3
-
SHA256
6f2cc9ca4294952ee5e520bb4744cc9973d7345f71b17b71a5459ae2cfb1add5
-
SHA512
545ec953f7e281c2ec9507e46024c679c367499d07f7fc0a88a90d7cbeda94c97c67804464c7288d533234d3fcfc30f0517e93079b89cfd288dda9c91c989531
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMHpaIq:TCjsIOtEvwDpj5HE/OUHnSMt
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-