2024-01-28_ffea7dcdea08c0114bc58d24ab400b90_cryptolocker

General

Target

2024-01-28_ffea7dcdea08c0114bc58d24ab400b90_cryptolocker
Size

100KB
MD5

ffea7dcdea08c0114bc58d24ab400b90
SHA1

9049ed37c4f3a3c142bdcad61084ebf847dbe3a4
SHA256

323200f99d76843a593db49fdb72e390faf216b63b7efc3b6dabb1f2dbc6887d
SHA512

10996199d20cad4b485852ca3e14ae0f69d2d18546cd5b560beac37eb461d9f77a776234b849ba17e9893216d6444bb3b3702834955d0d6c40de9efbf02241b0
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2ml:xj+VGMOtEvwDpjubwQEIiVmkxv/M

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-28_ffea7dcdea08c0114bc58d24ab400b90_cryptolocker