Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker
-
Size
49KB
-
Sample
240227-x5qxvahf3s
-
MD5
4141d21b9e4096dfa912fd45f355c7e1
-
SHA1
85fc121d0075fefede08c1ecaea2dd861a725d19
-
SHA256
14df634e3e23a37b6dfd6c035a41d0a3a78f30e16b220c353406ab043c46119f
-
SHA512
afa379459a46412b840ed69ada45eaec53d95a6d6d73ec19c7963fb267e68bbaf4c13c6ebce0e14862014b40cf5523ec75c5064a29752077f24337b4518712da
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSz8:bgGYcA/53GAA6y37Q6dI+d5b8
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-02-27_4141d21b9e4096dfa912fd45f355c7e1_cryptolocker
-
Size
49KB
-
MD5
4141d21b9e4096dfa912fd45f355c7e1
-
SHA1
85fc121d0075fefede08c1ecaea2dd861a725d19
-
SHA256
14df634e3e23a37b6dfd6c035a41d0a3a78f30e16b220c353406ab043c46119f
-
SHA512
afa379459a46412b840ed69ada45eaec53d95a6d6d73ec19c7963fb267e68bbaf4c13c6ebce0e14862014b40cf5523ec75c5064a29752077f24337b4518712da
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CSz8:bgGYcA/53GAA6y37Q6dI+d5b8
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-