2024-02-03_8e5523045a0a47864bab5d1ec1956e8a_cryptolocker

General

Target

2024-02-03_8e5523045a0a47864bab5d1ec1956e8a_cryptolocker
Size

99KB
MD5

8e5523045a0a47864bab5d1ec1956e8a
SHA1

3ee3639066f8b1f1fbb4fda036d08012e5894863
SHA256

9f8ad79e88813eeb4afd48ed4d7a31bcc193c7a8e7ef59676ad63f1efe126b14
SHA512

4a6ae893b561547eee5a8d26da639e8cee386632ba7766f760a22539e39b43df9fc4faa2841c52b2f14464cfd31aa901486f24fa21f6fc266d26b8fd04f4a4dd
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2dx:xj+VGMOtEvwDpjubwQEIiVmkxv/n

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-03_8e5523045a0a47864bab5d1ec1956e8a_cryptolocker