2024-03-26_e804f1a5fe1a1bd3db5cb4e993b1f2ce_cryptolocker

General

Target

2024-03-26_e804f1a5fe1a1bd3db5cb4e993b1f2ce_cryptolocker
Size

95KB
MD5

e804f1a5fe1a1bd3db5cb4e993b1f2ce
SHA1

0c3ea89e416bbd5e46f59dd2c726c6f412fd415d
SHA256

5d68c8019e6d62daba07b4a8f83e7679f32534a01b2df3fe2fddc74b5ac9515b
SHA512

ca0bc99cc515efa5cfa5a79c7750c3d424d623cef72e40fb922c0824bbde13a735ae8f9ccd21bfa90a63281ab1c4b0041e0d993ab9356d5fc22e1dd0a3faf781
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3uU:xj+VGMOtEvwDpjubwQEIiVmkV

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-26_e804f1a5fe1a1bd3db5cb4e993b1f2ce_cryptolocker