Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker
-
Size
42KB
-
Sample
240524-p2y52sde64
-
MD5
97fc40e3d7dc2c4d48f8613235ce97f6
-
SHA1
290128675b847b6189fac98025168fa1c483583c
-
SHA256
d63ae84bea591dbfa9384b0386a2891c20e2658532ca68df593b65b9074cf1db
-
SHA512
28f16ff84959751afa81d21a12dd0ba9190de57b72be019aac1b83eae725565e6b221391c146ad26c5693901cbd028ee98a65a04d05869ac180110a723ba2ff8
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqtN:bCDOw9aMDooc+vAqtN
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-24_97fc40e3d7dc2c4d48f8613235ce97f6_cryptolocker
-
Size
42KB
-
MD5
97fc40e3d7dc2c4d48f8613235ce97f6
-
SHA1
290128675b847b6189fac98025168fa1c483583c
-
SHA256
d63ae84bea591dbfa9384b0386a2891c20e2658532ca68df593b65b9074cf1db
-
SHA512
28f16ff84959751afa81d21a12dd0ba9190de57b72be019aac1b83eae725565e6b221391c146ad26c5693901cbd028ee98a65a04d05869ac180110a723ba2ff8
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqtN:bCDOw9aMDooc+vAqtN
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-