Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-15_e246c6417fa44b04a03c78b3c443bcda_cryptolocker
-
Size
48KB
-
Sample
240415-hewcbabc4v
-
MD5
e246c6417fa44b04a03c78b3c443bcda
-
SHA1
bcdb07b73931e189ca3e815e48944487f18c3de2
-
SHA256
c144d332c354ad8bdd1b535689d039ecb78f9e997f8254e93ba7d303876c8838
-
SHA512
ac188ca1fd530b66e65de8fed469b0d6bc0f5012413915f130f7c2f60a6bbeb67b55b7fab8a5dbab51f0969cddf17f13ebc4fdebacbc437266f26f3077b6322e
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4PYG:xj+VGMOtEvwDpjy+TN4t
Malware Config
Targets
-
-
Target
2024-04-15_e246c6417fa44b04a03c78b3c443bcda_cryptolocker
-
Size
48KB
-
MD5
e246c6417fa44b04a03c78b3c443bcda
-
SHA1
bcdb07b73931e189ca3e815e48944487f18c3de2
-
SHA256
c144d332c354ad8bdd1b535689d039ecb78f9e997f8254e93ba7d303876c8838
-
SHA512
ac188ca1fd530b66e65de8fed469b0d6bc0f5012413915f130f7c2f60a6bbeb67b55b7fab8a5dbab51f0969cddf17f13ebc4fdebacbc437266f26f3077b6322e
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4PYG:xj+VGMOtEvwDpjy+TN4t
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-