General

  • Target

    2024-06-15_e1a50f0df971e836345381cb77f7c26a_cryptolocker

  • Size

    40KB

  • MD5

    e1a50f0df971e836345381cb77f7c26a

  • SHA1

    1deb1a1bdb175cc0c13fadff04a7dd775c543b29

  • SHA256

    b48de7f706e0f8730d3019f73eb7499e7af1e3e0f19cf6326d7be37eb2ff5389

  • SHA512

    38390b796c94e359ecc433c89da9764822b5dfcc67b5f4847dcc68e641ef717d557c96ff3df31c55d6e9d2261d416a113f1373b9c27cf9ec7445c0cf9977d4a4

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBAJ:qDdFJy3QMOtEvwDpjjWMl7Td2

Score
10/10
upx

Malware Config

Signatures

  • Detection of CryptoLocker Variants 2 IoCs
  • Detection of Cryptolocker Samples 2 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-15_e1a50f0df971e836345381cb77f7c26a_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections