NEAS[.]2023-09-08_81c2cad7e0c9474437edf7740e881844_cryptolocker_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-08_81c2cad7e0c9474437edf7740e881844_cryptolocker_JC.exe
Size

90KB
MD5

81c2cad7e0c9474437edf7740e881844
SHA1

c60238f959ba9244b916a3258e98d4c054bd02f5
SHA256

0aa87c8b83ebb212029292767f1b695e2a085aea601af44c0032a2d6f2cc5830
SHA512

51bb3f0395c879a2e331578ff24aa863f345340820129ee5e84681cce9c4a1d7b9410a93eb72a708d8c2aecaaa1fc4b013fac9083541c71798058def3bdb8c79
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktrt:xj+VGMOtEvwDpjubwQEIiVmkZt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.2023-09-08_81c2cad7e0c9474437edf7740e881844_cryptolocker_JC.exe

Files

NEAS.2023-09-08_81c2cad7e0c9474437edf7740e881844_cryptolocker_JC.exe
.exe windows:5 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE