General

  • Target

    2024-03-12_fa335b485de7ce1641ffe03b6d7eef03_cryptolocker

  • Size

    66KB

  • MD5

    fa335b485de7ce1641ffe03b6d7eef03

  • SHA1

    eb65c09bbd667ef6cd3c11147d270d9ee2f2b027

  • SHA256

    8209a0c90026be752f7f614d07711067123b9201c028252febcd02b140c9d551

  • SHA512

    ecdda81b368997774e0fe946abf97397c779129784f7912fb20f5cf700f7d46aa5ac318e1523e5b00cee0bdf3c1b987fb4faf368e11e07edc44b9528a3309694

  • SSDEEP

    1536:z6QFElP6n+gKmddpMOtEvwDpj9aYaFAvCbDa66:z6a+CdOOtEvwDpjQH6

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 1 IoCs
  • Detection of Cryptolocker Samples 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-03-12_fa335b485de7ce1641ffe03b6d7eef03_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections