Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker
-
Size
42KB
-
Sample
240406-hgxcdscg8z
-
MD5
d328fea08aad7ad1f1f060ba1edef1d9
-
SHA1
42d0b41785f436c75b01c478729b647214805fd8
-
SHA256
c6da462903bb49df77d3d52f08c513ea6b3b3c71c24f41c7376174c235436f82
-
SHA512
aeb1ce2bc8e07efd5d08f045a348b736e9aa9c065a64f163d46ad396c7118a4206ea2aa2873718a906c3991814385651ed89dbe13482aa0401dafb4483c1a0bc
-
SSDEEP
768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvhx5/xFRp5f6:m5nkFNMOtEvwDpjG8hhXj5f6
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-06_d328fea08aad7ad1f1f060ba1edef1d9_cryptolocker
-
Size
42KB
-
MD5
d328fea08aad7ad1f1f060ba1edef1d9
-
SHA1
42d0b41785f436c75b01c478729b647214805fd8
-
SHA256
c6da462903bb49df77d3d52f08c513ea6b3b3c71c24f41c7376174c235436f82
-
SHA512
aeb1ce2bc8e07efd5d08f045a348b736e9aa9c065a64f163d46ad396c7118a4206ea2aa2873718a906c3991814385651ed89dbe13482aa0401dafb4483c1a0bc
-
SSDEEP
768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvhx5/xFRp5f6:m5nkFNMOtEvwDpjG8hhXj5f6
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-