93e4d4570d559d96dfb1d6443406ae7c2241d888cae76f0e1c6acf3e342de476 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93e4d4570d559d96dfb1d6443406ae7c2241d888cae76f0e1c6acf3e342de476
Size

70KB
MD5

4bb19216834d140acb208603b5c16f2f
SHA1

807e0a5140ec7784ef059f9c5588bb465e834adb
SHA256

93e4d4570d559d96dfb1d6443406ae7c2241d888cae76f0e1c6acf3e342de476
SHA512

2e9717fc9c63fcb28c561d2cdbb22a3a76b4ea50298a8590797c5eb990b9e6dfbb25cdf8b778d8f5ff1fb4520adf579292c1fbab5ec69e6a12784dc9de6ad3a7
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUtbgH:DW60sllyWOtEvwDpjwF85G

Score

10^/10

Malware Config

Signatures

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93e4d4570d559d96dfb1d6443406ae7c2241d888cae76f0e1c6acf3e342de476

Files

93e4d4570d559d96dfb1d6443406ae7c2241d888cae76f0e1c6acf3e342de476
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.uzwvn
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ