2024-01-29_c5f8bd61720108e008924dfd8b6ab94c_cryptolocker

General

Target

2024-01-29_c5f8bd61720108e008924dfd8b6ab94c_cryptolocker
Size

60KB
MD5

c5f8bd61720108e008924dfd8b6ab94c
SHA1

922c7f819793d8ba0d4bbc93e5e67fc7bfb0b757
SHA256

e76a00e7f2bf6c7228bbd4b6ad76435fbb268afd36e0a7463a7e34a8ced11cb9
SHA512

e7d2d11eb13efe824521f3d0ca35b32490126ca90c3897658c9b65c5daddc279fb7a97a64ea98ed8461693893142dcb74bbccb28dcaaf64f016a720ffd7d4541
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGERkDU:6j+1NMOtEvwDpjr8ox8UDERR

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-29_c5f8bd61720108e008924dfd8b6ab94c_cryptolocker