2024-01-25_6a6f079fb07e5ad305e9edb888df1443_cryptolocker

General

Target

2024-01-25_6a6f079fb07e5ad305e9edb888df1443_cryptolocker
Size

94KB
MD5

6a6f079fb07e5ad305e9edb888df1443
SHA1

61df469c27d5fb25328921bd1775b37c1d312209
SHA256

056c34ee2a1d5e22e50da9b91e5b7487cb15fded275fd19f195932fcbf640e8f
SHA512

5f3935437c80a760718b549f3faf137190aa3ba50c69f35a31d1d4036336eb3b139b4ff32a840dd88a8edb8f525909291773bf3eb04dfb9ca853868e50a2daba
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJXxbAm:xj+VGMOtEvwDpjubwQEIiVmkhAm

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-25_6a6f079fb07e5ad305e9edb888df1443_cryptolocker