Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker
-
Size
85KB
-
Sample
240523-e4wgtsdh86
-
MD5
844d240fae1e85902588ac0d8e6069f1
-
SHA1
b998a7b487eee4a7eabe0ba96ec3abe739e4460a
-
SHA256
a8ccf574b0357823dc2b9be7ed9d9fc216619cd6c126d4ee9106b6de60cfefbf
-
SHA512
8549c55dfcfe2a4f2e85118e2fad7f32a4894d4b23670e891865669a6b3d375687c76c5a0ef9deaf26202624ddaf04224b242202c71f1174b0cab0d41a30b76c
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+v:TCjsIOtEvwDpj5HE/OUHnSM5
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-23_844d240fae1e85902588ac0d8e6069f1_cryptolocker
-
Size
85KB
-
MD5
844d240fae1e85902588ac0d8e6069f1
-
SHA1
b998a7b487eee4a7eabe0ba96ec3abe739e4460a
-
SHA256
a8ccf574b0357823dc2b9be7ed9d9fc216619cd6c126d4ee9106b6de60cfefbf
-
SHA512
8549c55dfcfe2a4f2e85118e2fad7f32a4894d4b23670e891865669a6b3d375687c76c5a0ef9deaf26202624ddaf04224b242202c71f1174b0cab0d41a30b76c
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+v:TCjsIOtEvwDpj5HE/OUHnSM5
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-