General

  • Target

    2024-06-08_2ffa005152778a6a573435d6435f7813_cryptolocker

  • Size

    60KB

  • MD5

    2ffa005152778a6a573435d6435f7813

  • SHA1

    97f84076a8ef001c68d4af648d8b3e910a4a59fd

  • SHA256

    ef10d720436300d40438e5ed30ff008372e713f5da1c47d6eb13547da771ffa2

  • SHA512

    0de7d08d5cec7b564c8907680ea6cdd1b6f2c77f1759082addf6997bcf2fc0330ac1159e62e8520b4ce38fe35f8d8db4fa885e6d5e20cc697d8ed2c102c1f811

  • SSDEEP

    768:H6LsoEEeegiZPvEhHSG+gk5NQXtckstOOtEvwDpjhBaD3TUogs/VXpAP6pc9:H6QFElP6n+gou9cvMOtEvwDpjCpVXm

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 1 IoCs
  • Detection of Cryptolocker Samples 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-08_2ffa005152778a6a573435d6435f7813_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections