General

  • Target

    2024-05-29_c3a949985cd1a5833e4af166b0195e0d_cryptolocker

  • Size

    88KB

  • MD5

    c3a949985cd1a5833e4af166b0195e0d

  • SHA1

    328b5417fabab0e82336807fdc0a63998828c1ed

  • SHA256

    8b1f5f81fe25ffb8d591bef5f644e99f5a348cf808ccaa22d5511f5895f66ce5

  • SHA512

    65f2c1c852327f9500c89a34c538477186db5988fa8582d8e9fe67a4c02406d7b7849d2f59828bbea5ccf7d29825a208ed89c4b70640575ba7b3bdcac6eb6860

  • SSDEEP

    768:qkmnjFom/kLyMro2GtOOtEvwDpjeY10Y/YMsvlMdwPK80GQuchoIgtIODr:qkmnpomddpMOtEvwDpjJGYQbN/PKwMgF

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-29_c3a949985cd1a5833e4af166b0195e0d_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections