2024-03-09_33f7dfa804a5189e46f72965e6bbfb52_cryptolocker

General

Target

2024-03-09_33f7dfa804a5189e46f72965e6bbfb52_cryptolocker
Size

65KB
MD5

33f7dfa804a5189e46f72965e6bbfb52
SHA1

b7719e17ae7cf1f559aee2f531f038073c8c1a10
SHA256

d016a6f55ed52f90c5b8e5cd06cdee04619e501dc593b3c109061b432de7786d
SHA512

a19601a1b60471c5d9e803b996280a6352b728b7afae71512af7387f9d48ce658342560b3396893723269b1f29f9532a0ad56fbc954519bdb651f110dc177bca
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpEhhaUlPIx:6j+1NMOtEvwDpjr8ox8UDEpuha8PIx

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-09_33f7dfa804a5189e46f72965e6bbfb52_cryptolocker