2024-03-25_5d802e36b99011c34c6e103aafe5af26_cryptolocker

General

Target

2024-03-25_5d802e36b99011c34c6e103aafe5af26_cryptolocker
Size

56KB
MD5

5d802e36b99011c34c6e103aafe5af26
SHA1

d1ba04eb8b262f28b0c516d6818a803e9de64b63
SHA256

bfa5b3f4dbb5f02f1ae2b4033bdcf8d10b1d54b7ecaea4fdf034eca13e1f4e56
SHA512

4f5b42a71f4a2ac5714045eef6b8a0c97646d874905c41f1331f7fb203c800fa24ff1f9e85e2978f5c6a500654d7b56caf3ec34f5410741d355a011e4c6862c1
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7Wwfefs:6j+1NMOtEvwDpjr8oxEqk

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-25_5d802e36b99011c34c6e103aafe5af26_cryptolocker