Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-03_238a464e1395607dfc2d7787b44a2c78_cryptolocker
-
Size
47KB
-
Sample
240503-x5x16agf58
-
MD5
238a464e1395607dfc2d7787b44a2c78
-
SHA1
29731c1f19d8cac3937b19834e5d3359992ec54a
-
SHA256
40c1b0323e1a7e42a2a5e39e25a178a5c74edab3ccfbf2f243d66abac379c381
-
SHA512
31ae5a7344bd8d7b78efd9ba2573e7665017952856763a7005b383ae13f8ce4fc89d1c6dc5b4c45020840dbe8178bda52c647bf36c4a08741fa0255d3b326b00
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvccwDFWa:79mqyNhQMOtEvwDpjBzck1W4a
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-03_238a464e1395607dfc2d7787b44a2c78_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-03_238a464e1395607dfc2d7787b44a2c78_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-03_238a464e1395607dfc2d7787b44a2c78_cryptolocker
-
Size
47KB
-
MD5
238a464e1395607dfc2d7787b44a2c78
-
SHA1
29731c1f19d8cac3937b19834e5d3359992ec54a
-
SHA256
40c1b0323e1a7e42a2a5e39e25a178a5c74edab3ccfbf2f243d66abac379c381
-
SHA512
31ae5a7344bd8d7b78efd9ba2573e7665017952856763a7005b383ae13f8ce4fc89d1c6dc5b4c45020840dbe8178bda52c647bf36c4a08741fa0255d3b326b00
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvccwDFWa:79mqyNhQMOtEvwDpjBzck1W4a
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-