General

  • Target

    2024-05-28_de207743943a4dc3c406892342ac92d6_cryptolocker

  • Size

    72KB

  • MD5

    de207743943a4dc3c406892342ac92d6

  • SHA1

    e68555e737ed33698eb34788197f85b9b7461af3

  • SHA256

    ee3bc1a064eaff5971786b24e1a8a7d841f04bb6db390bfc64993bed61c0ff70

  • SHA512

    eb71a19482a695e07fd0b634517a4fb8414307de8ef76dc809dd6f0997fe47c860af03405b3d8436a6f31455fb24b54587b512f02a86a26912c1e08fdeeba3d4

  • SSDEEP

    1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs97xq:C4Q2c94OtEvwDpj4H8zl

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-28_de207743943a4dc3c406892342ac92d6_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections