Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-28_bb3df1cf7573d12a0577a4f97288ced4_cryptolocker
-
Size
54KB
-
Sample
240528-c81w1abg9v
-
MD5
bb3df1cf7573d12a0577a4f97288ced4
-
SHA1
0bba210748fd1786db3a9c76c4dcf64c50a88d1f
-
SHA256
10303a0051fb91af8c81563ef54f01b5902a9b610684aa2b02b641948f29d576
-
SHA512
724b1050bb47fbb40cbe80b23bcb9fd9ee3d9bd4e661a69ba8ab0d51efb08153a873063ca457a79181f4c98b2e272921e79f2c69e8a2556f94fb6718cd8d9f18
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPsL:V6a+pOtEvwDpjv
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-28_bb3df1cf7573d12a0577a4f97288ced4_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-28_bb3df1cf7573d12a0577a4f97288ced4_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-28_bb3df1cf7573d12a0577a4f97288ced4_cryptolocker
-
Size
54KB
-
MD5
bb3df1cf7573d12a0577a4f97288ced4
-
SHA1
0bba210748fd1786db3a9c76c4dcf64c50a88d1f
-
SHA256
10303a0051fb91af8c81563ef54f01b5902a9b610684aa2b02b641948f29d576
-
SHA512
724b1050bb47fbb40cbe80b23bcb9fd9ee3d9bd4e661a69ba8ab0d51efb08153a873063ca457a79181f4c98b2e272921e79f2c69e8a2556f94fb6718cd8d9f18
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPsL:V6a+pOtEvwDpjv
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-