2024-01-18_d12bbfafc7f8d49fed7ce429d43bbb8a_cryptolocker

General

Target

2024-01-18_d12bbfafc7f8d49fed7ce429d43bbb8a_cryptolocker
Size

104KB
MD5

d12bbfafc7f8d49fed7ce429d43bbb8a
SHA1

6b862fc8675cf9014e49028f5ce307fbb8e2628b
SHA256

b371981773dc79dcb667f1b31f20921443d0e6a618edec6bc7bbbdcd1001379a
SHA512

fc7712d64b9b191e628e272f79920aa130b5b252118198e4451194fe43b3bbccbb1a5784252e503b08a56d015b78ad661f0d07c314cd359e23feb5959c52339d
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWjy9BaU:xj+VGMOtEvwDpjubwQEIikuBl

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-18_d12bbfafc7f8d49fed7ce429d43bbb8a_cryptolocker