Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-06-08_eae1f8cc0d279f3aa10fcbdf86e7d181_cryptolocker
-
Size
97KB
-
Sample
240608-kkhphsae7y
-
MD5
eae1f8cc0d279f3aa10fcbdf86e7d181
-
SHA1
f8fe47dcdfb0ee9e80dc0ec26702c1dea40ef723
-
SHA256
5a74089467600c4660f559cfc9669dae9880f1642c736de356c124733f1d4b84
-
SHA512
b8c8903a9cad5a092eb42ce010df46460baa83efaf7fc8bf80a799cd17f4ef1fb9940fa8e8af04f9fbda791e952c234e01affe878cbce1fe048d41d3ad352f93
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpE1:V6a+pOtEvwDpjtzd
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-08_eae1f8cc0d279f3aa10fcbdf86e7d181_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-08_eae1f8cc0d279f3aa10fcbdf86e7d181_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-08_eae1f8cc0d279f3aa10fcbdf86e7d181_cryptolocker
-
Size
97KB
-
MD5
eae1f8cc0d279f3aa10fcbdf86e7d181
-
SHA1
f8fe47dcdfb0ee9e80dc0ec26702c1dea40ef723
-
SHA256
5a74089467600c4660f559cfc9669dae9880f1642c736de356c124733f1d4b84
-
SHA512
b8c8903a9cad5a092eb42ce010df46460baa83efaf7fc8bf80a799cd17f4ef1fb9940fa8e8af04f9fbda791e952c234e01affe878cbce1fe048d41d3ad352f93
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpE1:V6a+pOtEvwDpjtzd
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-