Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-10_861aaf20f307e44389f8b10d87dcb2cb_cryptolocker
-
Size
118KB
-
Sample
240310-gt74zsdg74
-
MD5
861aaf20f307e44389f8b10d87dcb2cb
-
SHA1
f4569dfeb10ed33893e34a7800d59a47c7332c00
-
SHA256
4edaede13b6a1963c3676a1042c875a567acb52c097e33b8c74c81c8ca9f6283
-
SHA512
7b0efdedb9542868d1af695b090907671543e0ec8d5bf4f59499e18658aaa5f8c51c420ad04ec0ef883f1767407de19660ed5873953ebc3dc110a882adc52359
-
SSDEEP
1536:z6QFElP6n+gKmddpMOtEvwDpj3GYQbN/PKwNgp01Qa6:z6a+CdOOtEvwDpjczE
Behavioral task
behavioral1
Sample
2024-03-10_861aaf20f307e44389f8b10d87dcb2cb_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-10_861aaf20f307e44389f8b10d87dcb2cb_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-10_861aaf20f307e44389f8b10d87dcb2cb_cryptolocker
-
Size
118KB
-
MD5
861aaf20f307e44389f8b10d87dcb2cb
-
SHA1
f4569dfeb10ed33893e34a7800d59a47c7332c00
-
SHA256
4edaede13b6a1963c3676a1042c875a567acb52c097e33b8c74c81c8ca9f6283
-
SHA512
7b0efdedb9542868d1af695b090907671543e0ec8d5bf4f59499e18658aaa5f8c51c420ad04ec0ef883f1767407de19660ed5873953ebc3dc110a882adc52359
-
SSDEEP
1536:z6QFElP6n+gKmddpMOtEvwDpj3GYQbN/PKwNgp01Qa6:z6a+CdOOtEvwDpjczE
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-