2024-08-25_703a573844b52ae9e5c0999642434586_cryptolocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-25_703a573844b52ae9e5c0999642434586_cryptolocker
Size

47KB
MD5

703a573844b52ae9e5c0999642434586
SHA1

1e47892629f3c756a84645d1d2a5848fc0d31052
SHA256

4df05fff99228fc319458ee9513e2455da1ad3699102918a5d113664fad47fe9
SHA512

12a930d216a6cecf1fb152312afbd4a0752ba508a7fc54cf8f9a6e8bc70e0e1860551aa7d47b5fe818e38ccf0b01032056af277542fdfe646cd9857326e0af6a
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJz:6j+1NMOtEvwDpjrRraJz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-25_703a573844b52ae9e5c0999642434586_cryptolocker

Files

2024-08-25_703a573844b52ae9e5c0999642434586_cryptolocker
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE