Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-21_7b240d331840a2039a2c7d1affcca173_cryptolocker
-
Size
43KB
-
Sample
240521-x8j9gaga87
-
MD5
7b240d331840a2039a2c7d1affcca173
-
SHA1
a86ee489b222a41cf6c0262503a77365b95af5b0
-
SHA256
9f1f518d99125fdb0734c9bf9823c74e8242bcbf0b4166e11480de06a897d7e9
-
SHA512
efd69f1beb5bb21606b1b4c97fb2702fa31c33ef7805edb83f4dba33dc09403a4c8e7022d01b302a9cea88bf18c026e1e0c1cd1001809e23716b57db4b93d1fd
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAH+:bCDOw9aMDooc+vAe
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_7b240d331840a2039a2c7d1affcca173_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-21_7b240d331840a2039a2c7d1affcca173_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-21_7b240d331840a2039a2c7d1affcca173_cryptolocker
-
Size
43KB
-
MD5
7b240d331840a2039a2c7d1affcca173
-
SHA1
a86ee489b222a41cf6c0262503a77365b95af5b0
-
SHA256
9f1f518d99125fdb0734c9bf9823c74e8242bcbf0b4166e11480de06a897d7e9
-
SHA512
efd69f1beb5bb21606b1b4c97fb2702fa31c33ef7805edb83f4dba33dc09403a4c8e7022d01b302a9cea88bf18c026e1e0c1cd1001809e23716b57db4b93d1fd
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAH+:bCDOw9aMDooc+vAe
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-