General

  • Target

    2024-05-15_4d88827c3d8469decf9234849bfd647a_cryptolocker

  • Size

    39KB

  • MD5

    4d88827c3d8469decf9234849bfd647a

  • SHA1

    58d0e21b36eb4289f71ce814c95f656e2332b58d

  • SHA256

    7053dfae414e95329fba228b46cd8c82ce4ab3c69dbc3f50207da22636825733

  • SHA512

    4d25660b5c0ecd2c1ce3efa2db08a30794e832acfab4dd0b723ececb1fe9ea0514f92b6c7d26e20f05c649ab492c81933e9f64fbbc3fe2ea4193a57024117d49

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYan/Mf:qDdFJy3QMOtEvwDpjjWMl7Tdn/S

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-15_4d88827c3d8469decf9234849bfd647a_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections