General

  • Target

    2024-04-08_04de47efd055bf9ec8a6266170620e72_cryptolocker

  • Size

    37KB

  • MD5

    04de47efd055bf9ec8a6266170620e72

  • SHA1

    0784fde359d737b61d60de59b3eff4286afbd33e

  • SHA256

    227c805405012dfba96eed34dbb908b825483dbfee40eff9e6c2cc8068ff5cec

  • SHA512

    39ccea954f9fd1d5f4c2f25ac1acc7d6d1ea0aefd4815e46c4dadcb30f2ce57ff60a92c258e1a0c804cad59ff0e0b16650fcdc27088da12641b419b4d8c11a01

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITo:qDdFJy3QMOtEvwDpjjWMl7To

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-08_04de47efd055bf9ec8a6266170620e72_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections