General

  • Target

    2024-01-29_3f006ffb58353282fa9bdcbad4e76d0a_cryptolocker

  • Size

    86KB

  • MD5

    3f006ffb58353282fa9bdcbad4e76d0a

  • SHA1

    c9f9149778714aaecd01e9476e2ad1fa8f1c8b5c

  • SHA256

    6c73d25d63c7e0d9264317ef64aa674a049dee7b14dd7f02105803471bf3cbfa

  • SHA512

    2e5a5474b08c2642750f5f45608839f018cafe946283e89b71db5900b37b16bb178a2739c3d753740197b6399ad4b1e24e8cc413c7ff180009a2756b4b19469e

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwMghJOP:AnBdOOtEvwDpj6zi

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-01-29_3f006ffb58353282fa9bdcbad4e76d0a_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections