Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-06-01_82e443633f6d2254081ae086b8d0c082_cryptolocker
-
Size
46KB
-
Sample
240601-mbgf7shf91
-
MD5
82e443633f6d2254081ae086b8d0c082
-
SHA1
dba61ba6ad89667aa85f54d1afb80a120344afd2
-
SHA256
e62ef926cac2e6c9be72e10bc1be1457cd0c88ce2748eb4f088a55da13456eb5
-
SHA512
3a756b778fc055822edd120241f523950de76802fc71b66aa294dbf44c3159911966b46e3a2309ab217db8381c820bac53e0edf7d50931875068c7db74ad282d
-
SSDEEP
768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPh+1c:P6QFElP6k+MRQMOtEvwDpjBQpVXK+a
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_82e443633f6d2254081ae086b8d0c082_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-01_82e443633f6d2254081ae086b8d0c082_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_82e443633f6d2254081ae086b8d0c082_cryptolocker
-
Size
46KB
-
MD5
82e443633f6d2254081ae086b8d0c082
-
SHA1
dba61ba6ad89667aa85f54d1afb80a120344afd2
-
SHA256
e62ef926cac2e6c9be72e10bc1be1457cd0c88ce2748eb4f088a55da13456eb5
-
SHA512
3a756b778fc055822edd120241f523950de76802fc71b66aa294dbf44c3159911966b46e3a2309ab217db8381c820bac53e0edf7d50931875068c7db74ad282d
-
SSDEEP
768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPh+1c:P6QFElP6k+MRQMOtEvwDpjBQpVXK+a
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-