2024-03-08_6cabd986e657def596bd373edd493b2d_cryptolocker

General

Target

2024-03-08_6cabd986e657def596bd373edd493b2d_cryptolocker
Size

97KB
MD5

6cabd986e657def596bd373edd493b2d
SHA1

cfc87dc70a7ff4702d07d1c9358a8f4adf9d7ecc
SHA256

3565fd6d7caee2dad2a01c4270f7e2471d8031c6e8fd94f8a9e7b81f5b1e4c5e
SHA512

9ecdb49cf53719ca88567c0369180955987bce8d5a4f638ec4aef31aeda7282555d0ce6e6239102ab2f92790eeb7f74b5983430b0cdd64245f943009582902cd
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3laSb8gL:xj+VGMOtEvwDpjubwQEIiVmkflak

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-08_6cabd986e657def596bd373edd493b2d_cryptolocker