Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-06-01_0d90a7c867594313410030877ff5357d_cryptolocker
-
Size
69KB
-
Sample
240601-wc29qsaa7w
-
MD5
0d90a7c867594313410030877ff5357d
-
SHA1
beba6930251e743a5395258a6f666da4a83151a5
-
SHA256
e2b0754978a0afbb6f9899c253609fc454fb29112e617307f29611ae40fb176e
-
SHA512
b57d1c17a6a4ac8d8a5492856791a7ede96476a3430db49b5751be14c4cbe8e9b2f2ed7d1157fa7115f4ebb2f6b4793956878265331520086e7fd85ab48a9b1f
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dA:i5nkFGMOtEvwDpjNbwQEI8UZDW
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_0d90a7c867594313410030877ff5357d_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-01_0d90a7c867594313410030877ff5357d_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_0d90a7c867594313410030877ff5357d_cryptolocker
-
Size
69KB
-
MD5
0d90a7c867594313410030877ff5357d
-
SHA1
beba6930251e743a5395258a6f666da4a83151a5
-
SHA256
e2b0754978a0afbb6f9899c253609fc454fb29112e617307f29611ae40fb176e
-
SHA512
b57d1c17a6a4ac8d8a5492856791a7ede96476a3430db49b5751be14c4cbe8e9b2f2ed7d1157fa7115f4ebb2f6b4793956878265331520086e7fd85ab48a9b1f
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dA:i5nkFGMOtEvwDpjNbwQEI8UZDW
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-