2024-09-12_8c88bfdf13d48092dfa702b44fe37c2f_cryptolocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-12_8c88bfdf13d48092dfa702b44fe37c2f_cryptolocker
Size

61KB
MD5

8c88bfdf13d48092dfa702b44fe37c2f
SHA1

eabb5b7e91e11d93008e65b7d3db98ca71f6f017
SHA256

af3f47606a7038b08de83db202d1e0949dc49f008eca8e0e286efb2931a6077e
SHA512

d064a552b2a348153aa80e3909eaf6fcda2de95455579099f098c4e93f9be60f8879f05286158416bb9f77a82a6bbe2f3d2a33e5bda3587a9891527e45c6ade8
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoFwDp:xj+VGMOtEvwDpjubEgyw1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-12_8c88bfdf13d48092dfa702b44fe37c2f_cryptolocker

Files

2024-09-12_8c88bfdf13d48092dfa702b44fe37c2f_cryptolocker
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE