Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker
-
Size
36KB
-
Sample
240418-kc6flsga65
-
MD5
58515856491edfae4e28dde5fe1294fc
-
SHA1
29465a1b65ad4bf30ea79d300ee231eec928eb1c
-
SHA256
51001316e915fd7f0a30663e23caa190807d96367ed0ff89b7e295a8619c08cb
-
SHA512
8c5df7a767d61f935989f30229f6652fdd98b2bcf572cb0758f10758e0c3d2ce2a63665b7c7fbfa74e32d514aef69c08a915fa3503ee91d6c7049f652d055fb8
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhX:bAvJCYOOvbRPDEgXRc3SSz3SPq
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-18_58515856491edfae4e28dde5fe1294fc_cryptolocker
-
Size
36KB
-
MD5
58515856491edfae4e28dde5fe1294fc
-
SHA1
29465a1b65ad4bf30ea79d300ee231eec928eb1c
-
SHA256
51001316e915fd7f0a30663e23caa190807d96367ed0ff89b7e295a8619c08cb
-
SHA512
8c5df7a767d61f935989f30229f6652fdd98b2bcf572cb0758f10758e0c3d2ce2a63665b7c7fbfa74e32d514aef69c08a915fa3503ee91d6c7049f652d055fb8
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhX:bAvJCYOOvbRPDEgXRc3SSz3SPq
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-