Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-03-27_3cd104fcbdaa90f4349317e84d5a2beb_cryptolocker
-
Size
49KB
-
Sample
240327-kdqfsagd27
-
MD5
3cd104fcbdaa90f4349317e84d5a2beb
-
SHA1
7dd17d42ac4ad7d121aa36d6d265d28285a9331f
-
SHA256
14546dd3f82cee78280c24b7ba5c3ed37ace0f2177eae3ef01bd609d1d688688
-
SHA512
e3d85a652e691dc98a183151196ac6f49abf9a179a695afb217b27bdaf1ea0832a973f5c82b4da1a75dd0af0b81f003d85e2dd82275b20c0d91a91595f10588d
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr46xdUUuuMT8MWAN:vj+jsMQMOtEvwDpj5Hczer5ixuMbWAN
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-27_3cd104fcbdaa90f4349317e84d5a2beb_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-27_3cd104fcbdaa90f4349317e84d5a2beb_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-27_3cd104fcbdaa90f4349317e84d5a2beb_cryptolocker
-
Size
49KB
-
MD5
3cd104fcbdaa90f4349317e84d5a2beb
-
SHA1
7dd17d42ac4ad7d121aa36d6d265d28285a9331f
-
SHA256
14546dd3f82cee78280c24b7ba5c3ed37ace0f2177eae3ef01bd609d1d688688
-
SHA512
e3d85a652e691dc98a183151196ac6f49abf9a179a695afb217b27bdaf1ea0832a973f5c82b4da1a75dd0af0b81f003d85e2dd82275b20c0d91a91595f10588d
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr46xdUUuuMT8MWAN:vj+jsMQMOtEvwDpj5Hczer5ixuMbWAN
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-