2024-03-12_a1587e6f09e1b54633d6ea3060945eb3_cryptolocker

General

Target

2024-03-12_a1587e6f09e1b54633d6ea3060945eb3_cryptolocker
Size

100KB
MD5

a1587e6f09e1b54633d6ea3060945eb3
SHA1

c749fde52d2355371d9a7f3e2eb204631a6f26aa
SHA256

1580e5b5ed6d1af5025c45a88f8da60d15031cdcfaffed8a51c623a214684327
SHA512

ac6ad3d98eacfd01c694da974743469a7ff9bd6b22ff6d7d7786000620ec9c27450ddf73205793a413cc52ae2cba20d39535f9eb16fc5889990079d763b14a44
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2yOm1:xj+VGMOtEvwDpjubwQEIiVmkxv/ur

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-12_a1587e6f09e1b54633d6ea3060945eb3_cryptolocker