Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-17_e5f08bc96f556d5335d94910a598c31d_cryptolocker
-
Size
41KB
-
Sample
240517-p31ehaab33
-
MD5
e5f08bc96f556d5335d94910a598c31d
-
SHA1
74023bc8151a27b618592f6a2742f539a833dd55
-
SHA256
1bf82e63849b228968417f340e8fd42f002cd8e0c0cafbcfaadbcd611ea3a640
-
SHA512
8b317c67a43e7dd79ae2e1b6161cdc0c62f96cb7423ca06e453bea6b03586ae4796eedc265bb8af110ad911e6d84010d0ee1b6853debadc1d68a29cc6da1203c
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCj:X6QFElP6n+gJQMOtEvwDpjBsYK/fo
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-17_e5f08bc96f556d5335d94910a598c31d_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-17_e5f08bc96f556d5335d94910a598c31d_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-17_e5f08bc96f556d5335d94910a598c31d_cryptolocker
-
Size
41KB
-
MD5
e5f08bc96f556d5335d94910a598c31d
-
SHA1
74023bc8151a27b618592f6a2742f539a833dd55
-
SHA256
1bf82e63849b228968417f340e8fd42f002cd8e0c0cafbcfaadbcd611ea3a640
-
SHA512
8b317c67a43e7dd79ae2e1b6161cdc0c62f96cb7423ca06e453bea6b03586ae4796eedc265bb8af110ad911e6d84010d0ee1b6853debadc1d68a29cc6da1203c
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCj:X6QFElP6n+gJQMOtEvwDpjBsYK/fo
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-