Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-13_622ce6eaaaef1052095a19d9259e7a77_cryptolocker
-
Size
44KB
-
Sample
240513-yaef1abb3w
-
MD5
622ce6eaaaef1052095a19d9259e7a77
-
SHA1
bacb0cfca2079fcf9a4221837875bd7aff90177f
-
SHA256
58225887b0232d1f7fe81fe08f791d15acc6bd9f93352d4f2052500700a01598
-
SHA512
e7c2dc6e361fa9fd1c95db7a6eccef26d138079e2f84f884897e41d199d50eafd8e20cab1acaabb4f20ea34e2cce48b4d927fa34643d89d8c8850a057d6340b6
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDUpEui0U3o:bm74zYcgT/Ekn0ryfjLuH
Malware Config
Targets
-
-
Target
2024-05-13_622ce6eaaaef1052095a19d9259e7a77_cryptolocker
-
Size
44KB
-
MD5
622ce6eaaaef1052095a19d9259e7a77
-
SHA1
bacb0cfca2079fcf9a4221837875bd7aff90177f
-
SHA256
58225887b0232d1f7fe81fe08f791d15acc6bd9f93352d4f2052500700a01598
-
SHA512
e7c2dc6e361fa9fd1c95db7a6eccef26d138079e2f84f884897e41d199d50eafd8e20cab1acaabb4f20ea34e2cce48b4d927fa34643d89d8c8850a057d6340b6
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jo0nrlwfjDUpEui0U3o:bm74zYcgT/Ekn0ryfjLuH
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-