2024-02-02_28f5bbacfa8c1d3935057917ecf97537_cryptolocker

General

Target

2024-02-02_28f5bbacfa8c1d3935057917ecf97537_cryptolocker
Size

48KB
MD5

28f5bbacfa8c1d3935057917ecf97537
SHA1

de44e8f309890df9583c5e830ed71d91a935412e
SHA256

60539ebaa537855dc5c76325ffeba2a671f51b08186a1c583d5042ed75f94744
SHA512

0ab952cf5905ce4a95682fda6abbdf804bf35caac5b3e254e731dd671a4c5786bac3b8ee4951cd52d5a0708cc2929010878c774678fd6ba444b36f8501d8cc73
SSDEEP

384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/74zpzw:XS5nQJ24LR1bytOOtEvwDpjNbP/0GeE

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-02_28f5bbacfa8c1d3935057917ecf97537_cryptolocker