2024-01-28_42fb2df73c445c6f246d7fd9fd2d4737_cryptolocker

General

Target

2024-01-28_42fb2df73c445c6f246d7fd9fd2d4737_cryptolocker
Size

92KB
MD5

42fb2df73c445c6f246d7fd9fd2d4737
SHA1

7da638d5d2ef3d4a95decd99ed69641e834031f4
SHA256

1b15baa39be2317f004b09b20450ff795b0cddfa61a799f2638a7acf6ac2eae6
SHA512

6119451ba3a80c5b76280523f03fcbf4c093a5b7930213a080d03f64176135f969b3ce72d2e9164bc41d965870e360cc474374e2948159358aee1b17d0c070a4
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ/R:xj+VGMOtEvwDpjubwQEIiVmk7R

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-28_42fb2df73c445c6f246d7fd9fd2d4737_cryptolocker