Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-19_23c50ebb8fa7817110893818dd3b29ea_cryptolocker
-
Size
35KB
-
Sample
240319-tzwdlagd93
-
MD5
23c50ebb8fa7817110893818dd3b29ea
-
SHA1
7a91912466f3909924d976410679c6a819449b65
-
SHA256
b8dcf63c74ad4cd0b75f290ca03ef697228c22900de56d33c4db4e61b6d1d5b9
-
SHA512
2b61580b7cff3caaeb1f35af3f3d675c55d1c5f5cf303411cb72e9c14841791462798580c38a356ca99ab4ec5ca4f4dea545ac4aeaa21bb232ac78d939fb1017
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3q4aKCu+:b7o/2n1TCraU6GD1a4Xt9bRU64hC/
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-19_23c50ebb8fa7817110893818dd3b29ea_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-03-19_23c50ebb8fa7817110893818dd3b29ea_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-19_23c50ebb8fa7817110893818dd3b29ea_cryptolocker
-
Size
35KB
-
MD5
23c50ebb8fa7817110893818dd3b29ea
-
SHA1
7a91912466f3909924d976410679c6a819449b65
-
SHA256
b8dcf63c74ad4cd0b75f290ca03ef697228c22900de56d33c4db4e61b6d1d5b9
-
SHA512
2b61580b7cff3caaeb1f35af3f3d675c55d1c5f5cf303411cb72e9c14841791462798580c38a356ca99ab4ec5ca4f4dea545ac4aeaa21bb232ac78d939fb1017
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3q4aKCu+:b7o/2n1TCraU6GD1a4Xt9bRU64hC/
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-