Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker
-
Size
42KB
-
Sample
240417-et978sde23
-
MD5
d9d623f0e34db6561de417c277793542
-
SHA1
25299f307aed1a318ee838028b5336d176eb399c
-
SHA256
0f0a748f4db21e1c7f6fa9eeafe72501e6ee304cf3c5802e11fecec7166c6b37
-
SHA512
8cd5b6d4f5d59614d8ee8a0ce034cc18ea0d789587428cf2d0df950bb59a7a7f467c502d965af2b8cb2a592ffc25f62044ee0939f0bfb2f9d470db1253d5455a
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU3:bm74zYcgT/Ekn0ryfjC
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-17_d9d623f0e34db6561de417c277793542_cryptolocker
-
Size
42KB
-
MD5
d9d623f0e34db6561de417c277793542
-
SHA1
25299f307aed1a318ee838028b5336d176eb399c
-
SHA256
0f0a748f4db21e1c7f6fa9eeafe72501e6ee304cf3c5802e11fecec7166c6b37
-
SHA512
8cd5b6d4f5d59614d8ee8a0ce034cc18ea0d789587428cf2d0df950bb59a7a7f467c502d965af2b8cb2a592ffc25f62044ee0939f0bfb2f9d470db1253d5455a
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDU3:bm74zYcgT/Ekn0ryfjC
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-