Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-10_9152497f34e3674b1a413dbdf17f3b1c_cryptolocker
-
Size
55KB
-
Sample
240410-x9zesahe46
-
MD5
9152497f34e3674b1a413dbdf17f3b1c
-
SHA1
8b4bb94755646fe0922289acc6008fb24a747ee5
-
SHA256
d93f2958821b567cb0b61589a18c8b9e320d334aeb8ae1a687f460d6d606aeb8
-
SHA512
e3ef9cca7f070e3bd49148175d4aafa4a1a2a91592fcddb356fa342c65a83d7917b7ac8ce1df86f410d815863e38b8db555d8c643ef9593910f0bae52fe30cd0
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTiSfQaV2LJL:X6QFElP6n+gJBMOtEvwDpjBtE1yILJL
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-10_9152497f34e3674b1a413dbdf17f3b1c_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-10_9152497f34e3674b1a413dbdf17f3b1c_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-10_9152497f34e3674b1a413dbdf17f3b1c_cryptolocker
-
Size
55KB
-
MD5
9152497f34e3674b1a413dbdf17f3b1c
-
SHA1
8b4bb94755646fe0922289acc6008fb24a747ee5
-
SHA256
d93f2958821b567cb0b61589a18c8b9e320d334aeb8ae1a687f460d6d606aeb8
-
SHA512
e3ef9cca7f070e3bd49148175d4aafa4a1a2a91592fcddb356fa342c65a83d7917b7ac8ce1df86f410d815863e38b8db555d8c643ef9593910f0bae52fe30cd0
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTiSfQaV2LJL:X6QFElP6n+gJBMOtEvwDpjBtE1yILJL
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-