2023-05-26_42dfad69de697878dff720e4d893eaef_teslacrypt | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-05-26_42dfad69de697878dff720e4d893eaef_teslacrypt
Size

536KB
MD5

42dfad69de697878dff720e4d893eaef
SHA1

5dc4edabdea5370f4e8c98454e349d0e38ed9b02
SHA256

94dcaa38c02c9a408248437fb4487b6c459a0d8605a1786cc02730ee93c67b65
SHA512

2f067c4a2e14cba689fd0439114bbdbc58bcf3efe1174e6f58a8c7afc9970c122f7dad18f378f1912fbbfa76e9d6bcba3c3dcb1a9f67bc69f86cf99386e4169d
SSDEEP

3072:sUIZlgTAGHWYeFIxzHgJAxA7b2DS06hVCGo0YLmdOpqh3JGyeSj9kq1TRpwV+:0dAx3DS0iCUOmdOpqhcyzBX2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-05-26_42dfad69de697878dff720e4d893eaef_teslacrypt

Files

2023-05-26_42dfad69de697878dff720e4d893eaef_teslacrypt
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ