Static task
static1
Behavioral task
behavioral1
Sample
2024-01-11_ebb85ee90a94eaaeb92c1996c89358e9_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-11_ebb85ee90a94eaaeb92c1996c89358e9_cryptolocker.exe
Resource
win10v2004-20231222-en
General
-
Target
2024-01-11_ebb85ee90a94eaaeb92c1996c89358e9_cryptolocker
-
Size
39KB
-
MD5
ebb85ee90a94eaaeb92c1996c89358e9
-
SHA1
354cdf4b42a285446023428dc169b9f52fdded79
-
SHA256
d5af719db857751618bc1bbe99def3696a8dd432e670e2111844a7c4a5ff6019
-
SHA512
37218f584d68a763a04f5010612b6e05e94f45e9a19e07a277c74da23538c00bc5f57e4e159fdda2d7de0bdc35420793b12817abe397586b224e416e0559c894
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenQLJJd+:ZzFbxmLPWQMOtEvwDpjLeU3d+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-01-11_ebb85ee90a94eaaeb92c1996c89358e9_cryptolocker
Files
-
2024-01-11_ebb85ee90a94eaaeb92c1996c89358e9_cryptolocker.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 10KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
petite Size: 334B - Virtual size: 334B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ