Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-18_ec037108d64d64dfe561c9900f421d2d_cryptolocker
-
Size
40KB
-
Sample
240418-jztjwsgh8s
-
MD5
ec037108d64d64dfe561c9900f421d2d
-
SHA1
0202642e9bb37f7e843df817f4197da7163c6dfc
-
SHA256
be217a543ee33bada0eaa1c490da6ab44ec8119f6225b4f934a3d30bb67aea56
-
SHA512
24e3fbc26b0073e62bf8dd66ce6814837b625c24b3b8913b580953470d3a314beec27529a31aee6e870a970dd8d5e8c59cb503f8d27366127ad7b12ba670d70f
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr4:X6QFElP6n+gJQMOtEvwDpjBsYK6r4
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-18_ec037108d64d64dfe561c9900f421d2d_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-18_ec037108d64d64dfe561c9900f421d2d_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-18_ec037108d64d64dfe561c9900f421d2d_cryptolocker
-
Size
40KB
-
MD5
ec037108d64d64dfe561c9900f421d2d
-
SHA1
0202642e9bb37f7e843df817f4197da7163c6dfc
-
SHA256
be217a543ee33bada0eaa1c490da6ab44ec8119f6225b4f934a3d30bb67aea56
-
SHA512
24e3fbc26b0073e62bf8dd66ce6814837b625c24b3b8913b580953470d3a314beec27529a31aee6e870a970dd8d5e8c59cb503f8d27366127ad7b12ba670d70f
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr4:X6QFElP6n+gJQMOtEvwDpjBsYK6r4
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-