Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-07_d2a5065525003fd2d808d724f53ffb18_cryptolocker
-
Size
48KB
-
Sample
240507-bc2mzsbc6w
-
MD5
d2a5065525003fd2d808d724f53ffb18
-
SHA1
beb1e618618885180c86fb813b403e8b447a6462
-
SHA256
2cd09af5a2d73efc3b465e021f04b5a3e3272f01963727f8fc2e27e5f28fc585
-
SHA512
655b29b708381d889aa96b113b979fb8658c0b329e0f89e358009f036145f7f7ca3c22d1ad8b2e8e171e68e914517c979443155e21708e63fa643e37ecf54b65
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nm:vj+jsMQMOtEvwDpj5HczerLO04B5
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-07_d2a5065525003fd2d808d724f53ffb18_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-07_d2a5065525003fd2d808d724f53ffb18_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-07_d2a5065525003fd2d808d724f53ffb18_cryptolocker
-
Size
48KB
-
MD5
d2a5065525003fd2d808d724f53ffb18
-
SHA1
beb1e618618885180c86fb813b403e8b447a6462
-
SHA256
2cd09af5a2d73efc3b465e021f04b5a3e3272f01963727f8fc2e27e5f28fc585
-
SHA512
655b29b708381d889aa96b113b979fb8658c0b329e0f89e358009f036145f7f7ca3c22d1ad8b2e8e171e68e914517c979443155e21708e63fa643e37ecf54b65
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nm:vj+jsMQMOtEvwDpj5HczerLO04B5
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-