2024-01-25_0a40dfa6d4a1669595e40c3e31f96da9_cryptolocker

General

Target

2024-01-25_0a40dfa6d4a1669595e40c3e31f96da9_cryptolocker
Size

100KB
MD5

0a40dfa6d4a1669595e40c3e31f96da9
SHA1

99e38efe5b044c5ae7f2cdedba5fea350d4685fa
SHA256

0c42134a61e9c450e6cb335e7cdcff4ced4ee821001d62b7fdf0f1fdcbe0e6e1
SHA512

430bba451b185bdf0c876a2520985e00c554d0ccd93ea1fa8f77d95f437b098634ddd350c6aa0486f1a603dee6cc96daba334ed475a74d435c685b93bb3fe932
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2W:xj+VGMOtEvwDpjubwQEIiVmkxv/6

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-25_0a40dfa6d4a1669595e40c3e31f96da9_cryptolocker