Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker
-
Size
54KB
-
Sample
240524-sd2g2sac66
-
MD5
ea289329d7a57dde24c6acae4cf553c3
-
SHA1
fd6caf0485c473600ac4092558adc7eeed178cfa
-
SHA256
99a623b69e96bf4a1f3a1dbafe129db518992d989f1901f7286f36d53f121fde
-
SHA512
d1c35957f414b21674a28e58b6e85b3d64acde16bfb775784203f432a845d2679b4cc61dc9d023872f22cfbc606d46810d3eef41985548f98810b0ccb8f98dba
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx0:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7A
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-24_ea289329d7a57dde24c6acae4cf553c3_cryptolocker
-
Size
54KB
-
MD5
ea289329d7a57dde24c6acae4cf553c3
-
SHA1
fd6caf0485c473600ac4092558adc7eeed178cfa
-
SHA256
99a623b69e96bf4a1f3a1dbafe129db518992d989f1901f7286f36d53f121fde
-
SHA512
d1c35957f414b21674a28e58b6e85b3d64acde16bfb775784203f432a845d2679b4cc61dc9d023872f22cfbc606d46810d3eef41985548f98810b0ccb8f98dba
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx0:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7A
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-