Static task
static1
Behavioral task
behavioral1
Sample
6cd7f5c49a7e6157a6ce5f9887f7bf13_cryptolocker_JC.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
6cd7f5c49a7e6157a6ce5f9887f7bf13_cryptolocker_JC.exe
Resource
win10v2004-20230703-en
General
-
Target
6cd7f5c49a7e6157a6ce5f9887f7bf13_cryptolocker_JC.exe
-
Size
44KB
-
MD5
6cd7f5c49a7e6157a6ce5f9887f7bf13
-
SHA1
9b4987bad77101393a2c89a32ec698be11b2181d
-
SHA256
cd723d3183093f5603c169d3f92687326cea0a67a752f4f88d16604868dc5af3
-
SHA512
a6f8777dfffd1b0a3c58a524058a7a6c2bc80de3e6115763500ee7a9a85bf278e2f135f69d0286e444f2979354a63ad339a8bbe1d483d5f5d63cdefc502a555d
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjZ1UKXJ0mHYGk:ZzFbxmLPWQMOtEvwDpjbtJ0H
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6cd7f5c49a7e6157a6ce5f9887f7bf13_cryptolocker_JC.exe
Files
-
6cd7f5c49a7e6157a6ce5f9887f7bf13_cryptolocker_JC.exe.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 10KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
petite Size: 334B - Virtual size: 334B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ