2024-03-06_63e606c2148dd83d976659d4080480de_cryptolocker

General

Target

2024-03-06_63e606c2148dd83d976659d4080480de_cryptolocker
Size

48KB
MD5

63e606c2148dd83d976659d4080480de
SHA1

057fdd56559cc240becf41e28ceed93a7a8ba6cd
SHA256

cebe8eebfd2a2d2a3b08a79fb20afcffc6a563ba3fb64d99d391385366352537
SHA512

82e4cf86c662c91f491c9eb64cb63813b0e880055dfe13a21fc05c2f08a6495b9f211d1f9b53d0671fb403e1d216d27c48fede41cce5b8d17f78043b683fac08
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRH:6j+1NMOtEvwDpjr8hhXl

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-06_63e606c2148dd83d976659d4080480de_cryptolocker