2024-03-06_d209a63a1ca411fd278aedeefabb5a8f_cryptolocker

General

Target

2024-03-06_d209a63a1ca411fd278aedeefabb5a8f_cryptolocker
Size

95KB
MD5

d209a63a1ca411fd278aedeefabb5a8f
SHA1

f9f06194f1c565cd1c60a27ebc9b3c2c39af5d3d
SHA256

6b5d8b5b299f9d177e14158ede4c4da23f41064f865a476ba60b77009312f47a
SHA512

302e6a29348d8d9a9587b938ba5ee27a4ed080fd9ad13294ed4c57655975f88d33d45dfdf858e423b2f7ff4254f25685ed6b32151bf8c25a1b3a24edee737444
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3YF:xj+VGMOtEvwDpjubwQEIiVmkS

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-06_d209a63a1ca411fd278aedeefabb5a8f_cryptolocker