Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-06-01_d5cc9ac80f4cffa515a514a2f583fe68_cryptolocker
-
Size
97KB
-
Sample
240601-kee2fagc53
-
MD5
d5cc9ac80f4cffa515a514a2f583fe68
-
SHA1
486778acc7e72022dda1d1b6bc41683854e9afe2
-
SHA256
ac05e25052da4d23e560b87f7253be3387cb927607520d4ce50e3cedb3d17a19
-
SHA512
a4474f9ed9d0d7d63827bd4a9c6764995720fc4f528730ac6042f2f2b88d4a0d8663bf5b28acc95e903d77d0b1bf67123ab8fbd02e33b8ea6b6dc6f5abf8813f
-
SSDEEP
1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4wra:Z6a+pOtEvwDpjtzD
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_d5cc9ac80f4cffa515a514a2f583fe68_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-01_d5cc9ac80f4cffa515a514a2f583fe68_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_d5cc9ac80f4cffa515a514a2f583fe68_cryptolocker
-
Size
97KB
-
MD5
d5cc9ac80f4cffa515a514a2f583fe68
-
SHA1
486778acc7e72022dda1d1b6bc41683854e9afe2
-
SHA256
ac05e25052da4d23e560b87f7253be3387cb927607520d4ce50e3cedb3d17a19
-
SHA512
a4474f9ed9d0d7d63827bd4a9c6764995720fc4f528730ac6042f2f2b88d4a0d8663bf5b28acc95e903d77d0b1bf67123ab8fbd02e33b8ea6b6dc6f5abf8813f
-
SSDEEP
1536:Z6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNC4wra:Z6a+pOtEvwDpjtzD
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-