2024-10-03_cbcf9893babaa4d7d13e465a73ecf17f_cryptolocker | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-03_cbcf9893babaa4d7d13e465a73ecf17f_cryptolocker
Size

68KB
MD5

cbcf9893babaa4d7d13e465a73ecf17f
SHA1

c1829fa5b411e43a0dae99b40a7efc742f4b83c5
SHA256

d1d41300e2f82252a1a1dbd9238603bf554d6d34aaf7db70d25b4564b2a54ec6
SHA512

17b25476f330f5c5dd2f80c6b26c4bc347be24a4e452cf42e91579159eb1312a5969ecd40a929df199bb71e4f51a5e07e13e393522911c408623372bd7e5787a
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIh:6j+1NMOtEvwDpjr8ox8UDEpN/jE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-03_cbcf9893babaa4d7d13e465a73ecf17f_cryptolocker

Files

2024-10-03_cbcf9893babaa4d7d13e465a73ecf17f_cryptolocker
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 17KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE