2024-02-17_8f0b30c8e9c22af71edcf2b4a5b01b39_cryptolocker

General

Target

2024-02-17_8f0b30c8e9c22af71edcf2b4a5b01b39_cryptolocker
Size

56KB
MD5

8f0b30c8e9c22af71edcf2b4a5b01b39
SHA1

efd659a67d6bb3ab065210c9de1532419050ae4a
SHA256

d06b04b24591ecc9758aa0bcb8a97ea75ec64bde92e7589553bb81a6e2f9c65a
SHA512

88ed42983a9c5b6399b0dbab9f336d4296659c1e94383b5a2a17c9c8deeb3491d4d979765520a70a7c7578fe7eca455620cb1ba059e252f55f152826a285aaff
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoFC:xj+VGMOtEvwDpjubEgyC

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-17_8f0b30c8e9c22af71edcf2b4a5b01b39_cryptolocker