2024-03-12_4fef13e97750c073515aeebfadf9fa48_cryptolocker

General

Target

2024-03-12_4fef13e97750c073515aeebfadf9fa48_cryptolocker
Size

56KB
MD5

4fef13e97750c073515aeebfadf9fa48
SHA1

8e538a941ce058d95f1c173bca910709f1b939ff
SHA256

f691eef535d7d7ef4859550b45d5935d495829aa231872a0cc47e3075cc7f253
SHA512

2e785617e67952a9f450a6bc2e8cdf1f36aa999de1315cf4da12b0fed99fa7c0c0a3c4b42902e46217270cd324a075560c3caf7191fc60f8fed1b63a992e21d1
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7Wwfe3x7:6j+1NMOtEvwDpjr8oxEq3x7

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-12_4fef13e97750c073515aeebfadf9fa48_cryptolocker