Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-10_69acdd0fd75e6c5c6dbae19f58ee0f6d_cryptolocker
-
Size
41KB
-
Sample
240410-y8sraadh2y
-
MD5
69acdd0fd75e6c5c6dbae19f58ee0f6d
-
SHA1
1eaed23374e373d004b701f9ba6678342b54686a
-
SHA256
cadef3502b6f8c4494a38d8c66eb02f6c90e33110edf26b74d5ceb03726cf2a7
-
SHA512
4a5bca27d22a6aee1d7b98c41f0820e372c66917f543e88c12493858b8c52faf76b90b86d24223e97ee2578c50833d12de23fb5886792a284db0176859723e71
-
SSDEEP
384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOe:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/w
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-10_69acdd0fd75e6c5c6dbae19f58ee0f6d_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-10_69acdd0fd75e6c5c6dbae19f58ee0f6d_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-10_69acdd0fd75e6c5c6dbae19f58ee0f6d_cryptolocker
-
Size
41KB
-
MD5
69acdd0fd75e6c5c6dbae19f58ee0f6d
-
SHA1
1eaed23374e373d004b701f9ba6678342b54686a
-
SHA256
cadef3502b6f8c4494a38d8c66eb02f6c90e33110edf26b74d5ceb03726cf2a7
-
SHA512
4a5bca27d22a6aee1d7b98c41f0820e372c66917f543e88c12493858b8c52faf76b90b86d24223e97ee2578c50833d12de23fb5886792a284db0176859723e71
-
SSDEEP
384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOe:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/w
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-