Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker
-
Size
80KB
-
Sample
240417-ym1vrsdh7w
-
MD5
ca4e2eb1d7c206fb0ce025fa5ec7638c
-
SHA1
e9e9f71c907559f4a04b59603823ec293d7a035c
-
SHA256
85e1faa1d8dd2ab9f474eb70d52e8250b10a88411c7ad248723b0373bec07267
-
SHA512
7149af60ee28f3a262a88a01afa44f3c339dd5a0bc227c7c989397a1746ef1d850064565d01679b3e783326ead2a9c9304038980a35f2a9c5c3018a1d564d0cf
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqk:vCjsIOtEvwDpj5H9YvQd21
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-17_ca4e2eb1d7c206fb0ce025fa5ec7638c_cryptolocker
-
Size
80KB
-
MD5
ca4e2eb1d7c206fb0ce025fa5ec7638c
-
SHA1
e9e9f71c907559f4a04b59603823ec293d7a035c
-
SHA256
85e1faa1d8dd2ab9f474eb70d52e8250b10a88411c7ad248723b0373bec07267
-
SHA512
7149af60ee28f3a262a88a01afa44f3c339dd5a0bc227c7c989397a1746ef1d850064565d01679b3e783326ead2a9c9304038980a35f2a9c5c3018a1d564d0cf
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNqk:vCjsIOtEvwDpj5H9YvQd21
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-