2024-03-06_e798ef2f0c0e5d77dd94374466ca3ed4_cryptolocker

General

Target

2024-03-06_e798ef2f0c0e5d77dd94374466ca3ed4_cryptolocker
Size

107KB
MD5

e798ef2f0c0e5d77dd94374466ca3ed4
SHA1

34111f2948b739b16e9048017e9f2c89262aa503
SHA256

692c57a6386cd666c281e6d8e586449fb0d815a8b331c6cd72ac1814a563a78c
SHA512

3617ee26ea97cd41f55649d5644d5cf2867f86b008baf5e433665fc8c98ebe16cd54939d2508fb20c0552dc47659d3aa7de4b81f8f1b6e8d4eaf3140e071779e
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWjzUNjaWB:xj+VGMOtEvwDpjubwQEIikgNmW

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-06_e798ef2f0c0e5d77dd94374466ca3ed4_cryptolocker