2024-02-04_cdf08a9c7aec4f6b0e5fa11c157cc92a_cryptolocker

General

Target

2024-02-04_cdf08a9c7aec4f6b0e5fa11c157cc92a_cryptolocker
Size

95KB
MD5

cdf08a9c7aec4f6b0e5fa11c157cc92a
SHA1

37c073e78dbe0b1af11610a79e6bd1d44420055e
SHA256

9bdfaf7cc7b0d85bea2e9338f217844df23f5b9c625ae645d5cf9f90017479c6
SHA512

ad5a258b8aa9b23a4367145a44331345deb5624e9e7777c43b00f02099307498073688b5b129c91a272992e57718a9479f184bbadb24366156fcb11ec7280901
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3J:xj+VGMOtEvwDpjubwQEIiVmkfJ

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-04_cdf08a9c7aec4f6b0e5fa11c157cc92a_cryptolocker