Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-05-29_1965bff05f12ff5665ebb33d1dbe4440_cryptolocker
-
Size
63KB
-
Sample
240529-twnvcacc36
-
MD5
1965bff05f12ff5665ebb33d1dbe4440
-
SHA1
430e5e2eda17e27b7886b148ea8adfefe121e57b
-
SHA256
7ed59f5ecc1111eb6536d722497901d863b74ce615e8a2cf8cb8b5f3a6de1a44
-
SHA512
8ee490c7d83c67b89479353314a06855c23beae770cbc59bebf50e9253a75e8242588713491b9c827fd7669a99ed30f86de2ab3c648158bb6fb190cf4499a415
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnxQ:btng54SMLr+/AO/kIhfoKMHdai
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-29_1965bff05f12ff5665ebb33d1dbe4440_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-29_1965bff05f12ff5665ebb33d1dbe4440_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-29_1965bff05f12ff5665ebb33d1dbe4440_cryptolocker
-
Size
63KB
-
MD5
1965bff05f12ff5665ebb33d1dbe4440
-
SHA1
430e5e2eda17e27b7886b148ea8adfefe121e57b
-
SHA256
7ed59f5ecc1111eb6536d722497901d863b74ce615e8a2cf8cb8b5f3a6de1a44
-
SHA512
8ee490c7d83c67b89479353314a06855c23beae770cbc59bebf50e9253a75e8242588713491b9c827fd7669a99ed30f86de2ab3c648158bb6fb190cf4499a415
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnxQ:btng54SMLr+/AO/kIhfoKMHdai
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-