Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-13_9348cf024e679e7095562bebf4e829a8_cryptolocker
-
Size
96KB
-
Sample
240513-1dkhjaee4x
-
MD5
9348cf024e679e7095562bebf4e829a8
-
SHA1
a83a748003a3e7f17c5464b97d1fa1d35d0c0159
-
SHA256
106340db2b8be18918b522dc409597088c5e242fe42687a949bf3cc2c946dae1
-
SHA512
b3a450efd0d2820d9421c6a788fae7e32cd8f30561a6d33051b680b0acce2097a06941898ad0e903c0f322d96c0ebb4c970014eee98479e48e1e1a5a638e79d1
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgm:V6a+pOtEvwDpjtzi
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-13_9348cf024e679e7095562bebf4e829a8_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-13_9348cf024e679e7095562bebf4e829a8_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-13_9348cf024e679e7095562bebf4e829a8_cryptolocker
-
Size
96KB
-
MD5
9348cf024e679e7095562bebf4e829a8
-
SHA1
a83a748003a3e7f17c5464b97d1fa1d35d0c0159
-
SHA256
106340db2b8be18918b522dc409597088c5e242fe42687a949bf3cc2c946dae1
-
SHA512
b3a450efd0d2820d9421c6a788fae7e32cd8f30561a6d33051b680b0acce2097a06941898ad0e903c0f322d96c0ebb4c970014eee98479e48e1e1a5a638e79d1
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMgm:V6a+pOtEvwDpjtzi
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-