Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-10_58fb686521e409a57b61fe114a07b31b_cryptolocker
-
Size
53KB
-
Sample
240310-3tn7rsee23
-
MD5
58fb686521e409a57b61fe114a07b31b
-
SHA1
24da1df198a652e3ab7c07712a0a9018ba40b305
-
SHA256
600f2ab48b3e1e9f7ac8d565d2638548c4137b574d3caa3ad59abf04fa160c29
-
SHA512
a288b879deccc36bd58f1754c772cf02b5a9a409ad51c24fc4171a105c62e617d0a04c12e1ee4fad2ead8afff4d54158aac82d083b2dccf8f1e8448d6d8e8e3b
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9XbTbmhTbR:bIDOw9a0DwitDZzcTM
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-10_58fb686521e409a57b61fe114a07b31b_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-10_58fb686521e409a57b61fe114a07b31b_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-10_58fb686521e409a57b61fe114a07b31b_cryptolocker
-
Size
53KB
-
MD5
58fb686521e409a57b61fe114a07b31b
-
SHA1
24da1df198a652e3ab7c07712a0a9018ba40b305
-
SHA256
600f2ab48b3e1e9f7ac8d565d2638548c4137b574d3caa3ad59abf04fa160c29
-
SHA512
a288b879deccc36bd58f1754c772cf02b5a9a409ad51c24fc4171a105c62e617d0a04c12e1ee4fad2ead8afff4d54158aac82d083b2dccf8f1e8448d6d8e8e3b
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9XbTbmhTbR:bIDOw9a0DwitDZzcTM
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-