Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker
-
Size
106KB
-
Sample
240411-kwc86sbc6x
-
MD5
d825ee1f5ff96a0ae17360ceff1035f7
-
SHA1
03a2e66a67b600723bd93bb2743fcc6f298baa2f
-
SHA256
a0d9d0fc5288597e3cf64673dc53d6577f6056b2f822c1324931b509ec9c8654
-
SHA512
53df2835c126a963fbce4048b82c3f90b603d329ecc0a0f6cc9f58db443d6ee5bb1e0fcd9e12bc58bd0c1781d6d72917c0632fd0a89047ef8747f0699643dbe6
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpQbCJh5:V6a+pOtEvwDpjtzw
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-11_d825ee1f5ff96a0ae17360ceff1035f7_cryptolocker
-
Size
106KB
-
MD5
d825ee1f5ff96a0ae17360ceff1035f7
-
SHA1
03a2e66a67b600723bd93bb2743fcc6f298baa2f
-
SHA256
a0d9d0fc5288597e3cf64673dc53d6577f6056b2f822c1324931b509ec9c8654
-
SHA512
53df2835c126a963fbce4048b82c3f90b603d329ecc0a0f6cc9f58db443d6ee5bb1e0fcd9e12bc58bd0c1781d6d72917c0632fd0a89047ef8747f0699643dbe6
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpQbCJh5:V6a+pOtEvwDpjtzw
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-