Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-24_8b8e273bea40fed5a2a938d07b0d3469_cryptolocker
-
Size
52KB
-
Sample
240524-e8kwwsde4y
-
MD5
8b8e273bea40fed5a2a938d07b0d3469
-
SHA1
d8840788dd559726d2fd2681f8c2fa776b04f387
-
SHA256
0ced20722813e2754ca7741cf4d4c3d608be73882a57a77b65390d08dc512970
-
SHA512
635efbc6df251516b16bf6109f9db46bd869f49dbdadb81a0979d1a6323ff7b534038ff641c848c5dd00fca8da5a212a1ae2d679a1b431334eb28f7595c50dbe
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszDr6at:79mqyNhQMOtEvwDpjBxe8TpXRSDeat
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-24_8b8e273bea40fed5a2a938d07b0d3469_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-05-24_8b8e273bea40fed5a2a938d07b0d3469_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-24_8b8e273bea40fed5a2a938d07b0d3469_cryptolocker
-
Size
52KB
-
MD5
8b8e273bea40fed5a2a938d07b0d3469
-
SHA1
d8840788dd559726d2fd2681f8c2fa776b04f387
-
SHA256
0ced20722813e2754ca7741cf4d4c3d608be73882a57a77b65390d08dc512970
-
SHA512
635efbc6df251516b16bf6109f9db46bd869f49dbdadb81a0979d1a6323ff7b534038ff641c848c5dd00fca8da5a212a1ae2d679a1b431334eb28f7595c50dbe
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszDr6at:79mqyNhQMOtEvwDpjBxe8TpXRSDeat
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-