2024-04-05_6790606b930097de346d9d764e95cf08_cryptolocker

General

Target

2024-04-05_6790606b930097de346d9d764e95cf08_cryptolocker
Size

74KB
MD5

6790606b930097de346d9d764e95cf08
SHA1

f83568433482620ab907abe693142dcd4247ffe6
SHA256

a2131978fd48fc67e73850d7a18aadae2c1fcc4e82e6f0f5df16d28f42f64e60
SHA512

ed535c1e9e45c1005e40e36c1ba5198c307ae0ed918932bd1ce5cd65dc9d8bd8cb3a9b4298b96eafef947234f0e1e5dc8f9d6515b5fda02a776d3a255eb03003
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUwN8yb:xj+VGMOtEvwDpjubwQEI8U48yb

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-05_6790606b930097de346d9d764e95cf08_cryptolocker