Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-23_b0d93e795d964bf438c8f76379a8221b_cryptolocker
-
Size
136KB
-
Sample
240223-ypyhesga86
-
MD5
b0d93e795d964bf438c8f76379a8221b
-
SHA1
d01720c65f973ae3355336f5e56b973bc678f24b
-
SHA256
98f9015bfa21dc409441247251a42ed762d2fe00801bbfbefa71b530051f81ff
-
SHA512
39f10ba6c92c9d94f064cf5e45fcd3fc8bd99a9f5bd14c95be5dd312cebf3d26553930a9efbed0e4d04230c178dc531f5ba778cdb9692e4f5504cacede321910
-
SSDEEP
1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgpwqWsviy6M:u6a++OtEvwDpj6zA
Malware Config
Targets
-
-
Target
2024-02-23_b0d93e795d964bf438c8f76379a8221b_cryptolocker
-
Size
136KB
-
MD5
b0d93e795d964bf438c8f76379a8221b
-
SHA1
d01720c65f973ae3355336f5e56b973bc678f24b
-
SHA256
98f9015bfa21dc409441247251a42ed762d2fe00801bbfbefa71b530051f81ff
-
SHA512
39f10ba6c92c9d94f064cf5e45fcd3fc8bd99a9f5bd14c95be5dd312cebf3d26553930a9efbed0e4d04230c178dc531f5ba778cdb9692e4f5504cacede321910
-
SSDEEP
1536:u6QFElP6n+gWMOtEvwDpjJGYQbN/PKwNgpwqWsviy6M:u6a++OtEvwDpj6zA
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-