2024-03-12_4144df3f51fb66ffd5e2a8d0ad6ab1dc_cryptolocker

General

Target

2024-03-12_4144df3f51fb66ffd5e2a8d0ad6ab1dc_cryptolocker
Size

64KB
MD5

4144df3f51fb66ffd5e2a8d0ad6ab1dc
SHA1

f99bbdb87720f7e9d75f8cf1146764840229fc02
SHA256

6fa637366c1843aa815dd2cd500562bb6538cf718e5b930b57ba1549c6c7fd56
SHA512

1128070ea9d65096dfde17d7652f0c48b36df9212e6b28d2aec3329d2d359f9e4db86e295f6a6082aa2f294a58fc40adf18ed0e408b8834bf7f066df2e5b4272
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEMolK:6j+1NMOtEvwDpjr8ox8UDEhlK

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-12_4144df3f51fb66ffd5e2a8d0ad6ab1dc_cryptolocker