2024-02-27_e149ae1513eedf422d44310e91a8d242_cryptolocker

General

Target

2024-02-27_e149ae1513eedf422d44310e91a8d242_cryptolocker
Size

63KB
MD5

e149ae1513eedf422d44310e91a8d242
SHA1

d5aa24531d159cb875c03e5a5f843c3091ea5944
SHA256

3780836d3f5bd429b605d53473eafe0e37a68612526152187e8d26bc563b4b75
SHA512

25e8b9c7e1be0b6e0d843a81e06217c8a8a6273b29df5b06f6e6b837bdd4bfd936e25adaa76327e31d7563f37984f1b169c09246fff71c3f6882dd9c80254775
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEMl:6j+1NMOtEvwDpjr8ox8UDEs

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-27_e149ae1513eedf422d44310e91a8d242_cryptolocker