2024-02-24_5fe32cf67c97f8a26f2e82d3b3599b9b_cryptolocker

General

Target

2024-02-24_5fe32cf67c97f8a26f2e82d3b3599b9b_cryptolocker
Size

64KB
MD5

5fe32cf67c97f8a26f2e82d3b3599b9b
SHA1

2e7a30a233ac1e88a9e3c917b2f530fa1b94fe1f
SHA256

14dc347bb65a79d50007e854ebc5d29b066d933c6a4b3d2ff13dd302baa3a0a6
SHA512

541c85738bc5debc9ab1d48419472f4f4c794aceaff5622b989e19905f0ba7d5f414cfdf0da0eb3de8562694be34b3e4df0682905b766a951eb92a79d4b44dfd
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEMij:6j+1NMOtEvwDpjr8ox8UDEPj

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-24_5fe32cf67c97f8a26f2e82d3b3599b9b_cryptolocker