Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-04-29_9977bfe3ea867b4743e95689342082bd_cryptolocker
-
Size
50KB
-
Sample
240429-hcsteacf82
-
MD5
9977bfe3ea867b4743e95689342082bd
-
SHA1
5994d3faaaf6e051d0c35341648e313bff718587
-
SHA256
56f0e9a2a99f212ee4995508a11a2bd4e7681894be27c9311ac6f8b478cbb414
-
SHA512
fac2a53ef3ef826ebd64edc38b3d45fcbf8fafe6eca7de525566b03ef5c8dbb90fe55b4aae4a2e1fe099e8a8cff8f4a324ee10e1778ffcea6907751ec3255738
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTHGf9:79mqyNhQMOtEvwDpjBxe8GGf9
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-29_9977bfe3ea867b4743e95689342082bd_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-29_9977bfe3ea867b4743e95689342082bd_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-29_9977bfe3ea867b4743e95689342082bd_cryptolocker
-
Size
50KB
-
MD5
9977bfe3ea867b4743e95689342082bd
-
SHA1
5994d3faaaf6e051d0c35341648e313bff718587
-
SHA256
56f0e9a2a99f212ee4995508a11a2bd4e7681894be27c9311ac6f8b478cbb414
-
SHA512
fac2a53ef3ef826ebd64edc38b3d45fcbf8fafe6eca7de525566b03ef5c8dbb90fe55b4aae4a2e1fe099e8a8cff8f4a324ee10e1778ffcea6907751ec3255738
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qnTHGf9:79mqyNhQMOtEvwDpjBxe8GGf9
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-