Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker
-
Size
39KB
-
Sample
240225-c8t4fsbb6y
-
MD5
ba504d1aef112af7be77060d5386f37e
-
SHA1
8ae821ce54349cfab5442d9588bb55ed47fd001d
-
SHA256
4451611b7da1bc883789f4f952f2a8b04fe15bc4792aaa6ca479db2df1c65133
-
SHA512
8f9da5f8f01fec98387d20c23928e63153c82c7b7ba7969e2905a6b1cb13c282e2d54fe77c47d2e9bb46746db10e01bf3c6493211a2d7b7379781ad990082c7b
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axRVZBL:V6QFElP6n+gMQMOtEvwDpjyaYaLBL
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker.exe
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
2024-02-25_ba504d1aef112af7be77060d5386f37e_cryptolocker
-
Size
39KB
-
MD5
ba504d1aef112af7be77060d5386f37e
-
SHA1
8ae821ce54349cfab5442d9588bb55ed47fd001d
-
SHA256
4451611b7da1bc883789f4f952f2a8b04fe15bc4792aaa6ca479db2df1c65133
-
SHA512
8f9da5f8f01fec98387d20c23928e63153c82c7b7ba7969e2905a6b1cb13c282e2d54fe77c47d2e9bb46746db10e01bf3c6493211a2d7b7379781ad990082c7b
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLam5axRVZBL:V6QFElP6n+gMQMOtEvwDpjyaYaLBL
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-