Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker
-
Size
87KB
-
Sample
240601-ptmr2sdc84
-
MD5
c144122d0fd0e025c98cbb02a2b70522
-
SHA1
14b5468e6930daafe309b890740d548814b73b87
-
SHA256
195f5da31e631ff99325d7eb10f095c801c5a25940ae72f316263eee081ffc58
-
SHA512
b4d5a15ce7a68206f807d060d39e9a944d988d7eafb3bfa7a1cf4437d42fe1670ce0529f8056881206af0e6834a1ac077d2c3c2934607406a0f60fe70b19caae
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aJ:V6a+pOtEvwDpjvp9
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-01_c144122d0fd0e025c98cbb02a2b70522_cryptolocker
-
Size
87KB
-
MD5
c144122d0fd0e025c98cbb02a2b70522
-
SHA1
14b5468e6930daafe309b890740d548814b73b87
-
SHA256
195f5da31e631ff99325d7eb10f095c801c5a25940ae72f316263eee081ffc58
-
SHA512
b4d5a15ce7a68206f807d060d39e9a944d988d7eafb3bfa7a1cf4437d42fe1670ce0529f8056881206af0e6834a1ac077d2c3c2934607406a0f60fe70b19caae
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aJ:V6a+pOtEvwDpjvp9
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-