General

  • Target

    2024-04-24_a85295d7678a387e13fab76664107b3b_cryptolocker

  • Size

    70KB

  • MD5

    a85295d7678a387e13fab76664107b3b

  • SHA1

    2a1b5906add900bf64acfc12b926cae007cb7399

  • SHA256

    817313f791d655e9867af064d342483a3f5d1682ca1b14a204873df6dcb96935

  • SHA512

    340e9d1947df56d9debfb492ef24076175744833f783b1aef6db3350ffeafd207da105ca85f9f1b0197dc547f2acb87198c023a2cffe618d12a74b920d4f562a

  • SSDEEP

    1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs9K:C4Q2c94OtEvwDpj4H8zn

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-24_a85295d7678a387e13fab76664107b3b_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections