2024-03-08_3cd2ef4a7ce6c6e9b7b709c65fdc3d99_cryptolocker

General

Target

2024-03-08_3cd2ef4a7ce6c6e9b7b709c65fdc3d99_cryptolocker
Size

102KB
MD5

3cd2ef4a7ce6c6e9b7b709c65fdc3d99
SHA1

b37831ed5126db0ef01d33dafbe171bf03a98b39
SHA256

01ec0d668f8fbba6f7a7f018dd774dedb46145f6356f5ec872b598371f56bf06
SHA512

3324da79dbc740f0bb58fcea3517f0e9a47f46134c9cd178ead2a9fc10b2f0554fa022c2d7a4c0bb40ccff04a5a33edb39aab03efccd7074ce6822b7c4608218
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2Xs:xj+VGMOtEvwDpjubwQEIiVmkxv/4

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-08_3cd2ef4a7ce6c6e9b7b709c65fdc3d99_cryptolocker