Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker
-
Size
38KB
-
Sample
240421-yxfycabb6x
-
MD5
9f6b221d7eee85dcac8c7b62607c982d
-
SHA1
3010b2fed059c7158d1419c53998ad80faf317e9
-
SHA256
520c910b5f6988109349fabdab21c4054b7484c718c66664723154588276e58a
-
SHA512
e2d6f2df1cb219a386e947d2fd08a5d7748437c01d9ec73cabaa94a06ae55faf648185aa811cf96414058b0631958a4272ad5271ca6b0d6c9582b20f979b2f14
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Z:qDdFJy3QMOtEvwDpjjWMl7TS
Behavioral task
behavioral1
Sample
2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-21_9f6b221d7eee85dcac8c7b62607c982d_cryptolocker
-
Size
38KB
-
MD5
9f6b221d7eee85dcac8c7b62607c982d
-
SHA1
3010b2fed059c7158d1419c53998ad80faf317e9
-
SHA256
520c910b5f6988109349fabdab21c4054b7484c718c66664723154588276e58a
-
SHA512
e2d6f2df1cb219a386e947d2fd08a5d7748437c01d9ec73cabaa94a06ae55faf648185aa811cf96414058b0631958a4272ad5271ca6b0d6c9582b20f979b2f14
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Z:qDdFJy3QMOtEvwDpjjWMl7TS
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-