2024-03-12_f2049855a8cbeddcd8d80c5e564ff2d1_cryptolocker

General

Target

2024-03-12_f2049855a8cbeddcd8d80c5e564ff2d1_cryptolocker
Size

64KB
MD5

f2049855a8cbeddcd8d80c5e564ff2d1
SHA1

3810331cccddb026c97edf8f599549ed99e46826
SHA256

77f2e266f4a37f2165fd561a406e499386bb43b59a9f23a2815f380bfb96e839
SHA512

a44d841daf247b5d50db9cb1ed22c289d306ffafff92da25dd6ac0fb1716b954739661f24726fcf13a95be8c8367ff5ae1ab5c268649db377e1734513715c47a
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEMou:6j+1NMOtEvwDpjr8ox8UDEhu

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-12_f2049855a8cbeddcd8d80c5e564ff2d1_cryptolocker