2024-01-08_db4bbe41cd33f986fc65721c37fd4a90_cryptolocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-08_db4bbe41cd33f986fc65721c37fd4a90_cryptolocker
Size

93KB
MD5

db4bbe41cd33f986fc65721c37fd4a90
SHA1

09b2313c7ed84f6b242250d0215a5a48b762c238
SHA256

32f0303bc91394242e8de77332109e9195c5518865cc99faf98a2ca2864a1651
SHA512

bb0b63370bc9f2da05b6d9e4411a886f03129e462dfe4b8b706db2e0dc71125e9da87935e1a9a3b0845f9021c5d4b87ba25a3fd3e4b4184eb2869cc5fc2ff10b
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJN:xj+VGMOtEvwDpjubwQEIiVmk5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-08_db4bbe41cd33f986fc65721c37fd4a90_cryptolocker

Files

2024-01-08_db4bbe41cd33f986fc65721c37fd4a90_cryptolocker
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE