2024-01-29_39f3cfec4f9520a27e7fc6627b6a4c8d_cryptolocker

General

Target

2024-01-29_39f3cfec4f9520a27e7fc6627b6a4c8d_cryptolocker
Size

46KB
MD5

39f3cfec4f9520a27e7fc6627b6a4c8d
SHA1

2de69258e87c8cb5afb6b6963ed83fcc7479fe9a
SHA256

171957d61ce036d8203b164dc9a6c0e7f3a4ab105df24abcd0449e73ea9dd693
SHA512

badb053c325c420e170720a7f4f0123177adc243a9839436e629cf0eb94cddd0abb86eae816527ca54ab04fb77ecf00f2a71cd1bb82c52db2fabde98bb3be732
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRH:6j+1NMOtEvwDpjr8hhX1

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-29_39f3cfec4f9520a27e7fc6627b6a4c8d_cryptolocker