2024-01-19_b4c36bc7d68dd2f47d05dc0e5f9575a7_cryptolocker

General

Target

2024-01-19_b4c36bc7d68dd2f47d05dc0e5f9575a7_cryptolocker
Size

56KB
MD5

b4c36bc7d68dd2f47d05dc0e5f9575a7
SHA1

eb9fd00fd5f9ce66f7fd8d479ff5dd0a1d284fdc
SHA256

0ba2585c59f9acefbe4c7188b6caf040bb8791319fafc4a62e2e31eb4ed90050
SHA512

e8a0bbf54159e2f128db283441f147fb5c5629e98dcdceeda24df6ccfa204480bdd7ef30114500e4c6bb4665c785050fa261c8b7e6ce87bc3b211ab6df569f7a
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Goi20HVew:xj+VGMOtEvwDpjubEgV20n

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-19_b4c36bc7d68dd2f47d05dc0e5f9575a7_cryptolocker