Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-29_d120b3bef824d561681cc6e0e3d52e64_cryptolocker
-
Size
97KB
-
Sample
240529-hp3jdafa25
-
MD5
d120b3bef824d561681cc6e0e3d52e64
-
SHA1
227644ff2fa8a056771e35f75e037412d0ac9e86
-
SHA256
b37207d66199910e160d422735c4008ba678c83ca20f878be9ba26580ef2e575
-
SHA512
d5d6a929c3a7df237b68d22e9ac2dd09aa8ea10f5556942113d6c15d659dcd4162bde5cb9369b55f608cf43fe79572b1a52c532d461212c7616e465a9b8c27c7
-
SSDEEP
1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01EG:AnBdOOtEvwDpj6zZ
Behavioral task
behavioral1
Sample
2024-05-29_d120b3bef824d561681cc6e0e3d52e64_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-29_d120b3bef824d561681cc6e0e3d52e64_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-29_d120b3bef824d561681cc6e0e3d52e64_cryptolocker
-
Size
97KB
-
MD5
d120b3bef824d561681cc6e0e3d52e64
-
SHA1
227644ff2fa8a056771e35f75e037412d0ac9e86
-
SHA256
b37207d66199910e160d422735c4008ba678c83ca20f878be9ba26580ef2e575
-
SHA512
d5d6a929c3a7df237b68d22e9ac2dd09aa8ea10f5556942113d6c15d659dcd4162bde5cb9369b55f608cf43fe79572b1a52c532d461212c7616e465a9b8c27c7
-
SSDEEP
1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01EG:AnBdOOtEvwDpj6zZ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-