Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-26_207ec14c24e0aefe5938d197f4ec566b_cryptolocker
-
Size
47KB
-
Sample
240326-d2rv7afd5z
-
MD5
207ec14c24e0aefe5938d197f4ec566b
-
SHA1
1de2f3a0d6c3954febc3f809a0e9be13a1c6e1a1
-
SHA256
4f8f66417a9d362058dee942ebb57f516e3ccfc82f2246582718b363a83258d0
-
SHA512
c33878e4fc10b9a44fc7eee98812a5b60482400e33b1c1e55d42765fef06a0a8e6c70c334d54dc789942cc3ed3d518613576190652c17fbc5e98ff931252450b
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4UKn7yXYJme:bIDOw9a0DwitDT8
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-26_207ec14c24e0aefe5938d197f4ec566b_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-26_207ec14c24e0aefe5938d197f4ec566b_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-26_207ec14c24e0aefe5938d197f4ec566b_cryptolocker
-
Size
47KB
-
MD5
207ec14c24e0aefe5938d197f4ec566b
-
SHA1
1de2f3a0d6c3954febc3f809a0e9be13a1c6e1a1
-
SHA256
4f8f66417a9d362058dee942ebb57f516e3ccfc82f2246582718b363a83258d0
-
SHA512
c33878e4fc10b9a44fc7eee98812a5b60482400e33b1c1e55d42765fef06a0a8e6c70c334d54dc789942cc3ed3d518613576190652c17fbc5e98ff931252450b
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4UKn7yXYJme:bIDOw9a0DwitDT8
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-