2023-05-28_6a28c4e9e556b6246651b00c3fc49038_teslacrypt | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-05-28_6a28c4e9e556b6246651b00c3fc49038_teslacrypt
Size

536KB
MD5

6a28c4e9e556b6246651b00c3fc49038
SHA1

1c0e5f2e7d4eb4a2a1c2b8a4b9c80b7796b5ba80
SHA256

078991c9d8f1c9b3c8478735002793f2717b6ee300aa028729ca1647b3b3559c
SHA512

62a351cc9d0f52888a36057dbdee30a6307c7185d750eee1916a94a0b9180253495c92395a67a6816db4a018610d1e09c54fb4889741a282f917894375f37e9e
SSDEEP

3072:RLhtgSlZAeKoNhbKIVzq5JRpLXOOvDaUwkDYnp4U+0mQccFNmvblzajFKTRp2r:B8BRpdDaUPYnfzmQccFNsxvX2r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-05-28_6a28c4e9e556b6246651b00c3fc49038_teslacrypt

Files

2023-05-28_6a28c4e9e556b6246651b00c3fc49038_teslacrypt
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ