2024-02-18_6ab7a91705f8efd8f06274bbc3ad787f_cryptolocker

General

Target

2024-02-18_6ab7a91705f8efd8f06274bbc3ad787f_cryptolocker
Size

55KB
MD5

6ab7a91705f8efd8f06274bbc3ad787f
SHA1

b8fbe08a0edfdfd4ba65b39bf1d582d02ddb282b
SHA256

8f86770181e0986a8d9c0a1eed26f8bf473e56d61ba5c128b81af78b0c8a6a71
SHA512

4a5aaf5c2a06716905ded0019ced58a448c7c67d8d32672d109e34d0ffdceec331ea8bbdd7f04aeabec516d48283ab348b3666c3938f146029ad3479ee94ed14
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbP/0GgH:xj+VGMOtEvwDpjubXdgH

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-18_6ab7a91705f8efd8f06274bbc3ad787f_cryptolocker