2024-02-22_6eb5b870f7e068203f255909db7c8abb_cryptolocker

General

Target

2024-02-22_6eb5b870f7e068203f255909db7c8abb_cryptolocker
Size

56KB
MD5

6eb5b870f7e068203f255909db7c8abb
SHA1

c42126b92d32f331f3b4996977865782d292bd90
SHA256

1b8c4a131f5e2af86b28c7abe23eb01bc0053e7cea85c5c414e0eca2335b036d
SHA512

278791ea44ef15c3ed6522e4c2fd3a4c71910b2ef5e334bd4ca82241b287e9a85bc89a467e7111321ebf7a728a182eea9a0cea964f0d76d49f0b71272e8e44c9
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7Gowfj8p:xj+VGMOtEvwDpjubEg6

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-22_6eb5b870f7e068203f255909db7c8abb_cryptolocker