2024-01-09_8e5b5a0a7512860eb638a5e5dd0a5a5e_cryptolocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_8e5b5a0a7512860eb638a5e5dd0a5a5e_cryptolocker
Size

43KB
MD5

8e5b5a0a7512860eb638a5e5dd0a5a5e
SHA1

5cb32be3fefd717f33fa440ac46c3eb093eae77e
SHA256

99a7be889ba919443560a459b3457b186a7d06e271a1bb6f048322a1a8bf810c
SHA512

27821009802858c4a1e962c65df4e84c478f46bc96d77f3d734c72eb80814b7bbee891d6eac2ae80cf9e661d0dcf3f22f13bb52be356f3afa8e7508eedbddaac
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RvNO:xj+VGMOtEvwDpjy+FO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-09_8e5b5a0a7512860eb638a5e5dd0a5a5e_cryptolocker

Files

2024-01-09_8e5b5a0a7512860eb638a5e5dd0a5a5e_cryptolocker
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE