Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker
-
Size
50KB
-
Sample
240228-2eqllsfd51
-
MD5
bd714e4cdc618ea3aa54c1f5895610e2
-
SHA1
23d4894733cfefc583bbb0e0fb96094db93ad368
-
SHA256
08ad67c3d5ebb9053091525202174f1a08d256345e0223129b20d2c6857c7eba
-
SHA512
f5fda78424490c9811dbedcf2eed5909c4bd2a71767dd53a4d27030229080f28633f507f4bca5534f03a8a2c8958aa0ebc78aa58acd66a59641b47e1d73d0d8d
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakNe:V6a+pOtEvwDpj9
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-02-28_bd714e4cdc618ea3aa54c1f5895610e2_cryptolocker
-
Size
50KB
-
MD5
bd714e4cdc618ea3aa54c1f5895610e2
-
SHA1
23d4894733cfefc583bbb0e0fb96094db93ad368
-
SHA256
08ad67c3d5ebb9053091525202174f1a08d256345e0223129b20d2c6857c7eba
-
SHA512
f5fda78424490c9811dbedcf2eed5909c4bd2a71767dd53a4d27030229080f28633f507f4bca5534f03a8a2c8958aa0ebc78aa58acd66a59641b47e1d73d0d8d
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakNe:V6a+pOtEvwDpj9
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-