2024-09-14_68d8463b35c7b33e225c61bdbcd87893_wormlocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-14_68d8463b35c7b33e225c61bdbcd87893_wormlocker
Size

1.8MB
MD5

68d8463b35c7b33e225c61bdbcd87893
SHA1

5f579fce2663cbd1b0ca1d2a46409dbe72b71230
SHA256

434df9d269a01f11c5ecaca49344e189ea95f3b7aa40175c2f2773eddb7f3550
SHA512

2151d532929a2e8020e55e563a43be78c3be4761bd7f0ff5921933428b01cf081bdc8fdfd24b9cd1306f9e6f0b2cefad33c45a8f527bead2b6578f74fc0accf2
SSDEEP

49152:epb/gUlz7chwGu8RXWxfLfVYY0Us9diyRXXVqPUqa:epb4UShwG4xzfVhNsbtFq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-14_68d8463b35c7b33e225c61bdbcd87893_wormlocker

Files

2024-09-14_68d8463b35c7b33e225c61bdbcd87893_wormlocker
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\damia_de0etcp\Desktop\Womr Locker2.0(Open Source)\SysWOW64\SysWOW64\obj\Debug\Automatic_converter_rff_to_mp4.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ