Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-13_97512fd53f2b734fdbee327d6cdff297_cryptolocker
-
Size
5.5MB
-
Sample
240313-a7ftbsfh3s
-
MD5
97512fd53f2b734fdbee327d6cdff297
-
SHA1
efd56c8a61bb14fa0358cdc6e2c13eeea9fc9677
-
SHA256
f90b4bf6fd99960d7e5becc234c6bcfc813dbba8e8e7fd49232269982bf56923
-
SHA512
9c729d8ee67b56744348f4e729d88d3b072107e4c3ec381442ed4d3ff0b6621e2835c2ae88a2b061f49a745f5b4bf9b2fd03190ae2e1c9f2d9690e274b4aa236
-
SSDEEP
98304:B2TI98GkoP+kfhZ5Tgm7jdwg+Zl3dKxikhFmg+47eggcgiP05h2VC:OI1PvfhfhOZzkzmg+8egrghz
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-13_97512fd53f2b734fdbee327d6cdff297_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-13_97512fd53f2b734fdbee327d6cdff297_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-13_97512fd53f2b734fdbee327d6cdff297_cryptolocker
-
Size
5.5MB
-
MD5
97512fd53f2b734fdbee327d6cdff297
-
SHA1
efd56c8a61bb14fa0358cdc6e2c13eeea9fc9677
-
SHA256
f90b4bf6fd99960d7e5becc234c6bcfc813dbba8e8e7fd49232269982bf56923
-
SHA512
9c729d8ee67b56744348f4e729d88d3b072107e4c3ec381442ed4d3ff0b6621e2835c2ae88a2b061f49a745f5b4bf9b2fd03190ae2e1c9f2d9690e274b4aa236
-
SSDEEP
98304:B2TI98GkoP+kfhZ5Tgm7jdwg+Zl3dKxikhFmg+47eggcgiP05h2VC:OI1PvfhfhOZzkzmg+8egrghz
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-