2024-01-29_43a408d51223933e055f4c70e4e979ed_cryptolocker

General

Target

2024-01-29_43a408d51223933e055f4c70e4e979ed_cryptolocker
Size

95KB
MD5

43a408d51223933e055f4c70e4e979ed
SHA1

f3fd4460816745eea421b16069414af440c6e7d3
SHA256

68a3a2a9e918d71cc18291669fb824f63c6edb3583e74444dd669bfff077e1d0
SHA512

4517a01bfefa1c3796ad448e61bc9e70a363852e613ce4d41e90f7cd292c1de2825a5254f16f405a14ff63bd7a89f2ec45d4a34c49a52bdd2a85a38e850ba516
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3/:xj+VGMOtEvwDpjubwQEIiVmkf/

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-29_43a408d51223933e055f4c70e4e979ed_cryptolocker