Static task
static1
Behavioral task
behavioral1
Sample
2024-01-03_0cab0f0ee025112429e170d49c2a797e_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-03_0cab0f0ee025112429e170d49c2a797e_cryptolocker.exe
Resource
win10v2004-20231215-en
General
-
Target
2024-01-03_0cab0f0ee025112429e170d49c2a797e_cryptolocker
-
Size
31KB
-
MD5
0cab0f0ee025112429e170d49c2a797e
-
SHA1
cf2119d7784c833e5fb2ca2d36d6627178b40285
-
SHA256
33c327864f87d1009925bafa334e5aa26ba2c683dabdcc7e97078362cafe0b6e
-
SHA512
c823817db366939db7cbbae47816d885b56880318ce4ad67e9d8c952642a8a98a0e18717a3880250dc9cde7a425d09ba5abaebaa8f679cbd7a3c05d4eaaa6d81
-
SSDEEP
768:q0ZziOWwULueOSdE8tOOtEvwDpjeWaJIOc+4tHB:q0zizzOSxMOtEvwDpj/arqh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-01-03_0cab0f0ee025112429e170d49c2a797e_cryptolocker
Files
-
2024-01-03_0cab0f0ee025112429e170d49c2a797e_cryptolocker.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
ukiwGhLB Size: - Virtual size: 36KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
MIZwSMcb Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE