Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker
-
Size
48KB
-
Sample
240225-fmgg1sbh96
-
MD5
95814d3aa2bca4e513baccd4dd6d4793
-
SHA1
cb779e41145a56f74fd37c31c667ef643493277d
-
SHA256
e412e5a769cfe712c18b8187b1f66c508d91d7fddc116c3a0bce3932d3cfb313
-
SHA512
910d3d3764a7fb6114240ce8392dcb05ad75f2f55a1f77c1e757af4626aa42a197f58922c440940dbafed2f0d79fb83a720b6e8f26b841983f56357e41461b3a
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakzu:V6a+pOtEvwDpjD
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker.exe
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
2024-02-25_95814d3aa2bca4e513baccd4dd6d4793_cryptolocker
-
Size
48KB
-
MD5
95814d3aa2bca4e513baccd4dd6d4793
-
SHA1
cb779e41145a56f74fd37c31c667ef643493277d
-
SHA256
e412e5a769cfe712c18b8187b1f66c508d91d7fddc116c3a0bce3932d3cfb313
-
SHA512
910d3d3764a7fb6114240ce8392dcb05ad75f2f55a1f77c1e757af4626aa42a197f58922c440940dbafed2f0d79fb83a720b6e8f26b841983f56357e41461b3a
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakzu:V6a+pOtEvwDpjD
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-