Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker
-
Size
95KB
-
Sample
240308-gmx1fahf7v
-
MD5
7b9509732ba8c981827c67f25dbc9441
-
SHA1
158da51d067286ba46c25f08e637dba9986ac346
-
SHA256
c4aa62e23f629d85366a52594e87b70dfafaa1b599b61a73eac23dfe621d22e5
-
SHA512
302dccf7ae1d3a91abc2e324d464d5fad676c34d96dbcb0008288ee0d5cc0db13e74d60993b2623d431fee7154be73eccad9d257e64b11608383d584348bbf22
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3YU:xj+VGMOtEvwDpjubwQEIiVmkv
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-08_7b9509732ba8c981827c67f25dbc9441_cryptolocker
-
Size
95KB
-
MD5
7b9509732ba8c981827c67f25dbc9441
-
SHA1
158da51d067286ba46c25f08e637dba9986ac346
-
SHA256
c4aa62e23f629d85366a52594e87b70dfafaa1b599b61a73eac23dfe621d22e5
-
SHA512
302dccf7ae1d3a91abc2e324d464d5fad676c34d96dbcb0008288ee0d5cc0db13e74d60993b2623d431fee7154be73eccad9d257e64b11608383d584348bbf22
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3YU:xj+VGMOtEvwDpjubwQEIiVmkv
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-