Overview

overview

10

Static

static

10

Trojan-Ran...or.exe

windows7-x64

10

Trojan-Ran...or.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Trojan-Ransom.Win32.GenericCryptor.cys-7e8c84cb552de951f9e58a021000717acf02733d95f96904d522d8e5e80b3966

  • Size

    343KB

  • MD5

    ec6aa41be012e670fe79082f14eca4ef

  • SHA1

    da133bca492f905108a62d0a824b4f003f8744c9

  • SHA256

    7e8c84cb552de951f9e58a021000717acf02733d95f96904d522d8e5e80b3966

  • SHA512

    1ff127102e164f66dd1f6c7d2ace61d364c12ccedcfb445022a654788a4e83a7d78cee20cc7b636300956c0f9bc24d128086a4c096ed526ff00cba00fc50084a

  • SSDEEP

    6144:SF/gEKyOAuuHcqXt96bHa+bZu0k6XCCbd2CKcwA2x9G+84AmGSncW:SF/gVyduuHv946gZ6bCbd2qspnA69

Score
10/10

Malware Config

Signatures

  • Detects executables built or packed with MPress PE compressor 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Trojan-Ransom.Win32.GenericCryptor.cys-7e8c84cb552de951f9e58a021000717acf02733d95f96904d522d8e5e80b3966
    .exe windows:5 windows x86 arch:x86

    4c748fceb46cf87075e0849b9251106c


    Headers

    Imports

    Sections