Static task
static1
Behavioral task
behavioral1
Sample
2024-04-16_cddaa5b469a6521f0ad1e2cca6036291_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-16_cddaa5b469a6521f0ad1e2cca6036291_cryptolocker.exe
Resource
win10v2004-20240412-en
General
-
Target
2024-04-16_cddaa5b469a6521f0ad1e2cca6036291_cryptolocker
-
Size
84KB
-
MD5
cddaa5b469a6521f0ad1e2cca6036291
-
SHA1
8533cab04f53dd0fd1dbcfe7066f1421155e5784
-
SHA256
b753fa47190c54d4aa7678616c28060d1599b27f3408dd4149473936dc325dc5
-
SHA512
9ae6c1b7094ba9608216485d7f4e2f3b15ae3bca7bcd42bbc41f095256177891ce126934280ee8f799141d7161504c393623f020a704857dcdaba1c539762429
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPnYv:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6v
Malware Config
Signatures
-
Detection of CryptoLocker Variants 1 IoCs
resource yara_rule sample CryptoLocker_rule2 -
Detection of Cryptolocker Samples 1 IoCs
resource yara_rule sample CryptoLocker_set1 -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-16_cddaa5b469a6521f0ad1e2cca6036291_cryptolocker
Files
-
2024-04-16_cddaa5b469a6521f0ad1e2cca6036291_cryptolocker.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 536B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ