2024-02-20_d28c51a6697a98eed48f4620e9f7e0bd_cryptolocker

General

Target

2024-02-20_d28c51a6697a98eed48f4620e9f7e0bd_cryptolocker
Size

101KB
MD5

d28c51a6697a98eed48f4620e9f7e0bd
SHA1

95c0d8fa33a6dbbd7a81a5c7e4a7797399d21e03
SHA256

517d4aff7ec2caedef90146a3e5fdd60eed5a88524254ecb87919c310d60a699
SHA512

5765778da1085d9093367138fa1aa9b9cd5e1ba937b8ac97325c989f050861e241d671ba3693043a70f3325fdaf373e37e1e86f39486c677942646d665ca35a2
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2NMh:xj+VGMOtEvwDpjubwQEIiVmkxv/C

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-20_d28c51a6697a98eed48f4620e9f7e0bd_cryptolocker