2023-05-25_366756f450e51637e910c4aa3a262803_teslacrypt | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-05-25_366756f450e51637e910c4aa3a262803_teslacrypt
Size

608KB
MD5

366756f450e51637e910c4aa3a262803
SHA1

025b461729643ca1f5eb05cdcef24be1dbec32b2
SHA256

a7894d7026fa43e55de8776cb156c0985e09c2e1dfc27d755f9128ac926e3609
SHA512

3a8b1a1fbcc7546ba3f9f5a0f667f3edb9fbb4c76e51db4d6c81fea62ce25c6c6fabee1b8e76712587321e6c6290454fd6171c1e9e9afdb316668f0092a06755
SSDEEP

3072:yUIZlgTAGHWYeFIxzHgJAxA7b2DS06hQkGogYyms6pQheP3OsHhIw0tTRpvXcOWD:69Ax3DS0/kAHms6pQhe2UKXvh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-05-25_366756f450e51637e910c4aa3a262803_teslacrypt

Files

2023-05-25_366756f450e51637e910c4aa3a262803_teslacrypt
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ