Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-16_13a7e9cd3f118f181a7fa5e3ad87179b_cryptolocker
-
Size
91KB
-
Sample
240516-z8jdaaha6x
-
MD5
13a7e9cd3f118f181a7fa5e3ad87179b
-
SHA1
0ef49cb505f0b797e667723761d04465066aec3d
-
SHA256
9d8682a717a0506d5d8b94b89ccfce44a4cd5aa922821e289aa32092511d38e6
-
SHA512
81dec4eb2fe40ca6d5c9039741954080d01784e9a3d4c76c19b66ca21ebed7cba296aaab456bc9e367764e0bb9ee0c912a6f781d08d89db49927d9e849aa271c
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQor:vCjsIOtEvwDpj5H8zPsQ
Malware Config
Targets
-
-
Target
2024-05-16_13a7e9cd3f118f181a7fa5e3ad87179b_cryptolocker
-
Size
91KB
-
MD5
13a7e9cd3f118f181a7fa5e3ad87179b
-
SHA1
0ef49cb505f0b797e667723761d04465066aec3d
-
SHA256
9d8682a717a0506d5d8b94b89ccfce44a4cd5aa922821e289aa32092511d38e6
-
SHA512
81dec4eb2fe40ca6d5c9039741954080d01784e9a3d4c76c19b66ca21ebed7cba296aaab456bc9e367764e0bb9ee0c912a6f781d08d89db49927d9e849aa271c
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQor:vCjsIOtEvwDpj5H8zPsQ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-