General

  • Target

    2024-03-13_3b4442e7e5f3c389a4567a1629c17ac8_cryptolocker

  • Size

    102KB

  • MD5

    3b4442e7e5f3c389a4567a1629c17ac8

  • SHA1

    38c3dcf5413b20d28577ee57d7190b72ae329a69

  • SHA256

    4973f07bf9a954f332be856b5e839d9db97b50a1876492896f950f4d57a4f5d0

  • SHA512

    72f388bab175cacf08bf7c2985d8f9af456acdfc5fd0cad7baa0d36b19e8d8f67b6ca926e523798e2b5c6b453ff6e0c8e38cbfe30a0188313710fa4cd6ad7640

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpwqWsviy6/:AnBdOOtEvwDpj6zz

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-03-13_3b4442e7e5f3c389a4567a1629c17ac8_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections