Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-11_dfc2e19058f25f970d2c02084e14e5fc_cryptolocker
-
Size
73KB
-
Sample
240411-jrg6wsac4v
-
MD5
dfc2e19058f25f970d2c02084e14e5fc
-
SHA1
cea4909c114cffe8afd49508407077c5bf4896ca
-
SHA256
a084c3bd9d7f6446e818a79880ac6dbdc7aad3675df2422fb7f9bddfe4c58c7a
-
SHA512
6b6f6945c4a02739f0c38acd7dabfee417c52b26c90fc6893be903a72b3cbc1a898ac12ff9971471c8b3d231e6c62f79b4a17b8b9ea01d8f93ef38d417037c07
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsu:X6a+SOtEvwDpjBZYvQd2F
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-11_dfc2e19058f25f970d2c02084e14e5fc_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-11_dfc2e19058f25f970d2c02084e14e5fc_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-11_dfc2e19058f25f970d2c02084e14e5fc_cryptolocker
-
Size
73KB
-
MD5
dfc2e19058f25f970d2c02084e14e5fc
-
SHA1
cea4909c114cffe8afd49508407077c5bf4896ca
-
SHA256
a084c3bd9d7f6446e818a79880ac6dbdc7aad3675df2422fb7f9bddfe4c58c7a
-
SHA512
6b6f6945c4a02739f0c38acd7dabfee417c52b26c90fc6893be903a72b3cbc1a898ac12ff9971471c8b3d231e6c62f79b4a17b8b9ea01d8f93ef38d417037c07
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsu:X6a+SOtEvwDpjBZYvQd2F
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-