General

  • Target

    2024-06-04_dba98b098e268ae998b02ca79ed3f588_cryptolocker

  • Size

    40KB

  • MD5

    dba98b098e268ae998b02ca79ed3f588

  • SHA1

    ba1432834e25d016d9482f16aa3b8fb975c942eb

  • SHA256

    7b26a7b6c8264b022b40cb3ce9419234162f84cf6235af76f6c7b52c4d6b82b2

  • SHA512

    38a2491c716be5e19db668bed2906e8b9edfe6da5f47e8b3e009c0dd05d5d19512e3ad94adb6057eb23ff0fb9f694826e47db81373d3b383b4e9ae0a862ee8b8

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBcD:qDdFJy3QMOtEvwDpjjWMl7TdE

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-04_dba98b098e268ae998b02ca79ed3f588_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections