2024-03-08_ff2d98778b8e5cdb86e5b5371146664f_cryptolocker

General

Target

2024-03-08_ff2d98778b8e5cdb86e5b5371146664f_cryptolocker
Size

54KB
MD5

ff2d98778b8e5cdb86e5b5371146664f
SHA1

276ee383eae8854acb299adef59ce07b454a80bb
SHA256

be28f75cbd8e60e319c4e48e46632a1d16605f4033b89ff09abc0d9f98916c68
SHA512

e967d9af2b28c0c719f9f14e5888272397d2ea3818e582b45d1811e2fd82efcc7a16bc0ef7775d3a5a598a83ac1152c7e1859556703d02401def67c936c8ad68
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz75YT:6j+1NMOtEvwDpjr8oxEnYT

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-08_ff2d98778b8e5cdb86e5b5371146664f_cryptolocker