2024-03-15_494fef97d72937ff308caa6da059012b_cryptolocker

General

Target

2024-03-15_494fef97d72937ff308caa6da059012b_cryptolocker
Size

93KB
MD5

494fef97d72937ff308caa6da059012b
SHA1

e272aa35c5d11b9f7f4383d8138ab06405613bd3
SHA256

003f93a8e5c2a560dbada2b9249d376214cde4af2096fae7cb6675c6be89619d
SHA512

a7b43f4f064bf178af569a8fadf4747b6787f6b9d30fe61b09df91a2dd06ec8a6c62adfb7aceb76659fbc7a72453c319e28f12df573a7400dec228d9b6429528
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvP26:xj+VGMOtEvwDpjubwQEI8UtzNcO8nSM

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-15_494fef97d72937ff308caa6da059012b_cryptolocker