General

  • Target

    2024-05-27_b0e97ce4a456d4d04c3cf62007b50bc9_cryptolocker

  • Size

    40KB

  • MD5

    b0e97ce4a456d4d04c3cf62007b50bc9

  • SHA1

    718ff0e1b2d36666a42339f25ea6f623970f5835

  • SHA256

    b64305b0d928ce767df0e4f4cd2623db5d93f64849cb84e797e034a36e8f12a9

  • SHA512

    aa6fea6b7bb2eb5e63e2bed13459b21f11e15d4e03920d7165c4dc52dfd7039f9341d0f585b31e2025ec68da1c8ad5af05347914fada95ee9df4ae2ef71e45eb

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaB8Spc4:qDdFJy3QMOtEvwDpjjWMl7TdGic4

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-27_b0e97ce4a456d4d04c3cf62007b50bc9_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections