2024-01-27_ef58543ee11d61cadbbda8f38a128ecb_cryptolocker

General

Target

2024-01-27_ef58543ee11d61cadbbda8f38a128ecb_cryptolocker
Size

64KB
MD5

ef58543ee11d61cadbbda8f38a128ecb
SHA1

d11d426baa6f295b3a361139e9a80a44d43fce72
SHA256

e293342c2e5a807747c519a8991fbb5879ae5aa1700f5479e0346e9cf7d0624f
SHA512

26017cf26cd2050ec0641752546224ad53bbfa7b78e5d7d66555df5859307d5f35f3fe66f35fda32752c2a1897504ef55a0375c91e394136ad3d5c4e69cbd949
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xW:6j+1NMOtEvwDpjr8ox8UDEpN/8

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-27_ef58543ee11d61cadbbda8f38a128ecb_cryptolocker